CVE-2023-47668

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 23, 2023

Updated: Nov 30, 2023

CWE ID 200

Summary

CVE-2023-47668 is a vulnerability affecting version 3.2.7 and below of the Restrict Content plugin in StellarWP Membership. This issue exposes sensitive information to unauthorized actors. Specifically, an attacker can gain access to user data, including email addresses and membership status, by exploiting a flaw in the plugin's implementation. Successful exploitation of this vulnerability may lead to serious privacy concerns for affected users and potential misuse of their information. It is crucial that users upgrade to the latest version of the plugin to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Liquid Web

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tT9dLS
https://www.cve.org/CVERecord?id=CVE-2023-47668
https://nvd.nist.gov/vuln/detail/CVE-2023-47668

Back to Vulnerability Database

CVE-2023-47668

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations