cleantalk
Vulnerabilities and Security Researches

Simple Author Box, CVE-2023-3601

CVE, Research URL

CVE-2023-3601

Home page URL

Security reports for Simple Author Box

Application

Simple Author Box

Published on
Aug 15, 2023
Research Description
The Simple Author Box WordPress plugin before 2.52 does not verify a user ID before outputting information about that user, leading to arbitrary user information disclosure to users with a role as low as Contributor.
Affected versions
max 2.52.
Status
vulnerable
Previous vulnerability researches
Simple Author Box , Mar 30, 2026
Simple Author Box (CVE-2023-3601) , Jun 07, 2024
Simple Author Box (8b7aa1417907f5ca7f22def8e70e2d23e5295ddf) , Jun 07, 2024
New vulnerability
File Manager Pro – Filester , Mar 30, 2026
Simple Author Box , Mar 30, 2026
Customizable WordPress Gallery Plugin – Modula Image Gallery , Mar 30, 2026
Speed Optimizer – The All-In-One WordPress Performance-Boosting Plugin , Mar 30, 2026
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026