WordPress Justified Gallery plugin <= 1.7.3 - Broken Access Control vulnerability
CVE-2023-40213
4.3MEDIUM
What is CVE-2023-40213?
A missing authorization vulnerability exists in the Justified Gallery plugin developed by Mateusz Czardybon, allowing unauthenticated users to exploit incorrectly configured access control security levels. This vulnerability affects versions of the Justified Gallery plugin up to 1.7.3. Unsuitable access controls can lead to potential exposure of sensitive functionalities, enabling unauthorized actions within the plugin.
Affected Version(s)
Justified Gallery <= 1.7.3