CVE-2023-47827

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 30, 2023

Updated: Dec 5, 2023

CWE ID 863

Summary

CVE-2023-47827 is an Incorrect Authorization vulnerability affecting the Events Addon for Elementor, from version n/a through 2.1.3. Hackers can exploit this issue to access functionality not properly constrained by Access Control Lists (ACLs), potentially gaining unauthorized access to sensitive information or features. This poses a significant risk to websites using the Events Addon for Elementor and highlights the importance of keeping plugins up-to-date with the latest security patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tYMM9t
https://www.cve.org/CVERecord?id=CVE-2023-47827
https://nvd.nist.gov/vuln/detail/CVE-2023-47827

Back to Vulnerability Database

CVE-2023-47827

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations