WordPress rtMedia for WordPress, BuddyPress and bbPress plugin <= 4.6.14 - Broken Access Control vulnerability
CVE-2023-41951
4.3MEDIUM
Key Information:
- Vendor
Wordpress
- Vendor
- CVE Published:
- 13 December 2024
What is CVE-2023-41951?
A missing authorization vulnerability exists in rtMedia for WordPress, BuddyPress, and bbPress, allowing attackers to exploit improperly configured access control security levels. This could lead to unauthorized access to sensitive data and functionalities within the affected applications. It is crucial for users of rtMedia versions n/a through 4.6.14 to review their security configurations to prevent potential exploitation.
Affected Version(s)
rtMedia for WordPress, BuddyPress and bbPress <= 4.6.14