CVE-2023-51676

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 29, 2023

Updated: Jan 5, 2024

CWE ID 918

Summary

CVE-2023-51676 is a Server-Side Request Forgery (SSRF) vulnerability discovered in Leevio Happy Addons for Elementor. Affecting versions from n/a to 3.9.1.1, this issue grants attackers the ability to send malicious HTTP requests from the vulnerable server, potentially leading to information disclosure or server manipulation. This security flaw poses a significant risk to websites using the affected addon and could result in unauthorized access or data exposure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

weDevs

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t4YBRR
https://www.cve.org/CVERecord?id=CVE-2023-51676
https://nvd.nist.gov/vuln/detail/CVE-2023-51676

Back to Vulnerability Database

CVE-2023-51676

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations