CVE-2023-35093

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jun 22, 2023

Updated: Jun 28, 2023

CWE ID 862

Summary

CVE-2023-35093 is a vulnerability affecting the StylemixThemes MasterStudy LMS plugin, specifically versions 3.0.8 and below, for WordPress websites used for online courses and education. This issue involves broken access control, granting unauthorized access to any logged-in users, including subscribers, to view order data. The affected data includes sensitive information such as email addresses and usernames associated with the orders.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Stylemixthemes Masterstudy Lms

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rvNbzx
https://www.cve.org/CVERecord?id=CVE-2023-35093
https://nvd.nist.gov/vuln/detail/CVE-2023-35093

Back to Vulnerability Database

CVE-2023-35093

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations