Security Advisory

CVE-2023-5559

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-27 16:22:06

Last updated 2024-08-02 07:59:44

Assigner WPScan

State PUBLISHED

Description

The 10Web Booster WordPress plugin before 2.24.18 does not validate the option name given to some AJAX actions, allowing unauthenticated users to delete arbitrary options from the database, leading to denial of service.

← Browse all CVEs View on cve.org ↗