CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-7195

The WP-Reply Notify WordPress plugin through 1.1 does not have a CSRF check in place when updating its settings, which could allow attackers to make a logged-in admin change them via a CSRF attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.6%

CVSS Severity

CVSS v3 Score 4.3

References

https://wpscan.com/vulnerability/72279ca0-6365-4c83-adca-4d8e5808a8c5/
https://wpscan.com/vulnerability/72279ca0-6365-4c83-adca-4d8e5808a8c5/

Products affected by CVE-2023-7195

Ani2life » Wp-Reply Notify » Version: Any

cpe:2.3:a:ani2life:wp-reply_notify:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-7195

Products

Pricing

Contact Us