CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-6946

The Autotitle for WordPress plugin through 1.0.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.8%

CVSS Severity

CVSS v3 Score 8.8

References

https://magos-securitas.com/txt/CVE-2023-6946
https://wpscan.com/vulnerability/54a00416-c7e3-44f3-8dd2-ed9e748055e6/
https://magos-securitas.com/txt/CVE-2023-6946
https://wpscan.com/vulnerability/54a00416-c7e3-44f3-8dd2-ed9e748055e6/

Products affected by CVE-2023-6946

Unalignedcode » Autotitle » Version: 1.0.3

cpe:2.3:a:unalignedcode:autotitle:1.0.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-6946

Products

Pricing

Contact Us