CVE-2023-51529

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 29, 2024

CWE ID 352

Summary

CVE-2023-51529 identifies a Cross-Site Request Forgery (CSRF) vulnerability present in the HT Mega – Absolute Addons For Elementor plugin. This issue puts versions of the plugin from n/a to 2.3.3 at risk. A successful exploit allows an attacker to submit unintended commands to the affected site on behalf of a user who is currently logged in, potentially leading to unauthorized actions. It's crucial for users to apply the necessary patches or updates to mitigate this security concern.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t3xd7D
https://www.cve.org/CVERecord?id=CVE-2023-51529
https://nvd.nist.gov/vuln/detail/CVE-2023-51529

Back to Vulnerability Database

CVE-2023-51529

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations