CVE-2023-5559
N/A
N/A
Summary
The 10Web Booster WordPress plugin before 2.24.18 does not validate the option name given to some AJAX actions, allowing unauthenticated users to delete arbitrary options from the database, leading to denial of service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | 10Web Booster | 0 < 2.24.18 | affected |
Weaknesses
- CWE-862 Missing Authorization
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.