CVE-2023-37890
Severity:
MEDIUM
Type:
Unavailable / Other
Publication date:
30/11/2023
Last modified:
06/12/2023
Description
Missing Authorization vulnerability in WPOmnia KB Support – WordPress Help Desk and Knowledge Base allows Accessing Functionality Not Properly Constrained by ACLs. Users with a role as low as a subscriber can view other customers.This issue affects KB Support – WordPress Help Desk and Knowledge Base: from n/a through 1.5.88.<br />
<br />
Impact
Base Score 3.x
4.30
Severity 3.x
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:liquidweb:kb_support:*:*:*:*:*:wordpress:*:* | 1.5.88 (including) |
To consult the complete list of CPE names with products and versions, see this page