CVE-2023-34370

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 28, 2024

CWE ID 918

Summary

CVE-2023-34370 is a Server-Side Request Forgery (SSRF) vulnerability affecting Brainstorm Force's Starter Templates for Elementor, WordPress, and Beaver Builder, as well as their Premium Starter Templates. Versions from n/a through 3.2.4 are impacted by this issue, allowing an attacker to potentially gain unauthorized access to internal resources or steal sensitive information by manipulating malicious HTTP requests. Users are strongly advised to update their templates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzabgX
https://www.cve.org/CVERecord?id=CVE-2023-34370
https://nvd.nist.gov/vuln/detail/CVE-2023-34370

Back to Vulnerability Database

CVE-2023-34370

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations