Vulnerabilities and Security Researches

ArtPlacer Widget, CVE-2023-7268

CVE, Research URL: CVE-2023-7268
Home page URL: Security reports for ArtPlacer Widget
Application: ArtPlacer Widget
Published on: Jul 19, 2024
Research Description: The ArtPlacer Widget WordPress plugin before 2.21.2 does not have authorisation check in place when deleting widgets, allowing ay authenticated users, such as subscriber, to delete arbitrary widgets
Affected versions: max 2.21.2.
Status: vulnerable