Privilege Escalation Vulnerability in Houzez
CVE-2023-26540
9.8CRITICAL
What is CVE-2023-26540?
A vulnerability in the Favethemes Houzez theme has been discovered that allows for improper privilege management, enabling an attacker to escalate privileges. This flaw affects all versions of the Houzez theme up to and including version 2.7.1. By exploiting this issue, unauthorized users could gain elevated privileges, compromising the security of the WordPress installation and potential access to sensitive data. Website administrators and users are urged to review their themes and apply necessary security patches to mitigate the risks associated with this vulnerability.
Affected Version(s)
Houzez <= 2.7.1