Improper Authentication Vulnerability Affects Checkout Mestres WP
CVE-2023-51471
8.2HIGH
What is CVE-2023-51471?
An improper authentication vulnerability exists in the Checkout Mestres WP plugin by Mestres, which allows attackers to access functionality that is not properly constrained by Access Control Lists (ACLs). This security flaw affects versions from n/a up to 7.1.9.7, enabling unauthorized users to perform actions that should be restricted, posing significant risk to the integrity and security of WordPress sites utilizing this plugin. Users are advised to review their installations and apply security patches to mitigate potential threats.
Affected Version(s)
Checkout Mestres WP <= 7.1.9.7