Security Advisory

CVE-2023-2494

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-23 23:36:47

Last updated 2026-04-08 16:54:23

Assigner Wordfence

State PUBLISHED

Description

The Go Pricing - WordPress Responsive Pricing Tables plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the process_postdata function in versions up to, and including, 3.3.19. This makes it possible for authenticated attackers with a role that the administrator previously granted access to the plugin to modify access to the plugin when it should only be the administrators privilege.

← Browse all CVEs View on cve.org ↗