Vector Strings

Severity Score: 8.8
Severity: HIGH
Exploitability Score: 2.8
Impact Score: 5.9

Access Vector (AV):
Access Complexity (AC):
Authentication (AU): NONE
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Published Date: 2024-01-08
Last Modified: 2024-01-11

CVE-2023-6532

About:
The WP Blogs' Planetarium WordPress plugin through 1.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

References

https://wpscan.com/vulnerability/05a730bc-2d72-49e3-a608-e4390b19e97f
https://magos-securitas.com/txt/CVE-2023-6532.txt

Related CVEs

Empower Your Security Strategy with Rainforest

Discover vulnerabilities early, prioritize critical threats, and protect what truly matters. Rainforest streamlines your security operations, saving you time and reducing costs, so you can focus on what drives your business forward.

Book a Demo