CVE-2023-6824

The WP Customer Area WordPress plugin before 8.2.1 does not properly validates user capabilities in some of its AJAX actions, allowing any users to retrieve other user's account address.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:marvinlabs:wp_customer_area:*:*:*:*:*:wordpress:*:*

History

No history.

Information

Published : 2024-01-16 16:15

Updated : 2024-01-23 15:35


NVD link : CVE-2023-6824

Mitre link : CVE-2023-6824

CVE.ORG link : CVE-2023-6824


JSON object : View

Products Affected

marvinlabs

  • wp_customer_area