CVE-2023-47765

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 22, 2023

Updated: Nov 27, 2023

CWE ID 352

Summary

CVE-2023-47765 is a Cross-Site Request Forgery (CSRF) vulnerability affecting CodeBard's Patron Button and Widgets for Patreon plugin, specifically versions 2.1.9 and below. A successful exploit of this vulnerability could allow an attacker to perform unintended actions on a user's Patreon account by tricking them into making unauthorized requests. This issue poses a significant risk to users, and it is crucial that they update their plugin to the latest version to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tV5ATy
https://www.cve.org/CVERecord?id=CVE-2023-47765
https://nvd.nist.gov/vuln/detail/CVE-2023-47765

Back to Vulnerability Database

CVE-2023-47765

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations