CVE-2023-48781

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 18, 2023

Updated: Dec 22, 2023

CWE ID 352

Summary

CVE-2023-48781 represents a Cross-Site Request Forgery (CSRF) vulnerability in Marketing Rapel's MkRapel Regiones y Ciudades de Chile para WC. This issue allows malicious actors to manipulate user actions on affected websites by injecting unintended commands. The vulnerability can be exploited through versions 4.3.0 and earlier of MkRapel Regiones y Ciudades de Chile para WC. Successful exploitation could lead to unauthorized changes, including but not limited to user account manipulation and data modification. Users are advised to update their software to the latest available version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/td-vPO
https://www.cve.org/CVERecord?id=CVE-2023-48781
https://nvd.nist.gov/vuln/detail/CVE-2023-48781

Back to Vulnerability Database

CVE-2023-48781

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations