Missing Authorization Vulnerability Affects Awesome Support
CVE-2023-51537

7.3HIGH

Key Information:

Vendor: Awesome Support Team
Status: Awesome Support WordPress Helpdesk \& Support
Vendor: CVE Published:; 12 June 2024

🔔 Create Awesome Support Team Vulnerability Alert

What is CVE-2023-51537?

A significant missing authorization vulnerability exists within the Awesome Support plugin developed by Awesome Support Team. This issue allows unauthorized users access to restricted functionalities, creating potential risks for data integrity and user privacy. The vulnerability impacts all versions from n/a up to 6.1.5, making it crucial for users of the Awesome Support plugin to apply necessary patches and updates to safeguard their applications from potential exploitation.

References

https://patchstack.com/database/vulnerability/awesome-sup...

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 12, 2024

JSON