CVE-2023-6843

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jan 15, 2024

Updated: Jan 19, 2024

Summary

CVE-2023-6843: A vulnerability was discovered in the easy.jobs- Best Recruitment Plugin for Job Board Listing, Manager, Career Page for Elementor & Gutenberg WordPress plugin. Before version 2.4.7, the plugin failed to adequately secure certain AJAX actions, granting any logged-in users the ability to modify the plugin's settings unintendedly. This issue could potentially lead to unauthorized configuration changes, impacting the functionality and security of affected WordPress websites.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t0Jqm6
https://www.cve.org/CVERecord?id=CVE-2023-6843
https://nvd.nist.gov/vuln/detail/CVE-2023-6843

Back to Vulnerability Database

CVE-2023-6843

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations