CVE-2023-2487

Summary

CVE-2023-2487 is a vulnerability affecting the Smackcoders Export All Posts, Products, Orders, Refunds & Users plugin. The issue exposes sensitive information to unauthorized actors. Specifically, the vulnerability allows an attacker to access exported data containing confidential information, including post content, product details, order information, and user data, from versions 1 through 2.4.1 of the plugin. This can potentially result in data breaches and privacy violations. Users of the affected plugin are advised to upgrade to a patched version as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.