Security Advisory

CVE-2023-0335

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-27 15:37:21

Last updated 2025-02-19 20:19:09

Assigner WPScan

State PUBLISHED

Description

The WP Shamsi WordPress plugin through 4.3.3 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber delete attachment.

← Browse all CVEs View on cve.org ↗