CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-47350

Cross-Site Request Forgery (CSRF) vulnerability in SwiftyEdit Content Management System prior to v1.2.0, allows remote attackers to escalate privileges via the user password update functionality.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.6%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/SwiftyEdit/SwiftyEdit/commit/90a6f3df16cd1578b2827d7b2e073451f7ce4e47
https://mechaneus.github.io/CVE-2023-47350.html
https://github.com/SwiftyEdit/SwiftyEdit/commit/90a6f3df16cd1578b2827d7b2e073451f7ce4e47
https://mechaneus.github.io/CVE-2023-47350.html

Products affected by CVE-2023-47350

Swiftyedit » Swiftyedit » Version: N/A

cpe:2.3:a:swiftyedit:swiftyedit:-
Swiftyedit » Swiftyedit » Version: 1.0.0

cpe:2.3:a:swiftyedit:swiftyedit:1.0.0
Swiftyedit » Swiftyedit » Version: 1.1.0

cpe:2.3:a:swiftyedit:swiftyedit:1.1.0
Swiftyedit » Swiftyedit » Version: 1.1.2

cpe:2.3:a:swiftyedit:swiftyedit:1.1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-47350

Products

Pricing

Contact Us