CVE-2023-6066

{"id": "CVE-2023-6066", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-01-15T16:15:12.420", "references": [{"url": "https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623", "tags": ["Exploit", "Third Party Advisory"], "source": "contact@wpscan.com"}, {"url": "https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "The WP Custom Widget area WordPress plugin through 1.2.5 does not properly apply capability and nonce checks on any of its AJAX action callback functions, which could allow attackers with subscriber+ privilege to create, delete or modify menus on the site."}, {"lang": "es", "value": "El complemento de WordPress WP Custom Widget area hasta la versi\u00f3n 1.2.5 no aplica correctamente la capacidad y las comprobaciones nonce en ninguna de sus funciones de devoluci\u00f3n de llamada de acci\u00f3n AJAX, lo que podr\u00eda permitir a atacantes con privilegios de suscriptor+ crear, eliminar o modificar men\u00fas en el sitio."}], "lastModified": "2024-11-21T08:43:04.507", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:kishorkhambu:wp_custom_widget_area:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "031DD6B0-E176-49A2-9DCD-C4C3328B857A", "versionEndIncluding": "1.2.5"}], "operator": "OR"}]}], "sourceIdentifier": "contact@wpscan.com"}