CVE-2023-41665

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published May 17, 2024

CWE ID 269

Summary

CVE-2023-41665 is an Improper Privilege Management vulnerability discovered in GiveWP, a popular WordPress plugin. This issue enables Privilege Escalation, allowing unauthenticated attackers to gain elevated access to affected installations. The vulnerability affects GiveWP versions from n/a through 2.33.0. Users are strongly advised to upgrade to a secure version as soon as possible to protect their WordPress sites from potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sgatia
https://www.cve.org/CVERecord?id=CVE-2023-41665
https://nvd.nist.gov/vuln/detail/CVE-2023-41665

Back to Vulnerability Database

CVE-2023-41665

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations