CVE-2023-41697

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 10, 2023

Updated: Oct 11, 2023

CWE ID 352

Summary

CVE-2023-41697 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Nikunj Soni Easy WP Cleaner plugin versions 1.9 and below. A successful exploit of this vulnerability allows an attacker to manipulate user actions on a targeted website, potentially leading to unauthorized data modifications or unintended functionality changes. This issue poses a significant risk to websites utilizing the vulnerable plugin, making it essential for users to apply the latest patch or consider alternative solutions to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sgf-_1
https://www.cve.org/CVERecord?id=CVE-2023-41697
https://nvd.nist.gov/vuln/detail/CVE-2023-41697

Back to Vulnerability Database

CVE-2023-41697

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations