exploitDog

GHSA-272q-3rfm-9jxh

Опубликовано: 13 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

The GPT AI Power: Content Writer & ChatGPT & Image Generator & WooCommerce Product Writer & AI Training WordPress plugin before 1.4.38 does not perform any kind of nonce or privilege checks before letting logged-in users modify arbitrary posts.

The GPT AI Power: Content Writer & ChatGPT & Image Generator & WooCommerce Product Writer & AI Training WordPress plugin before 1.4.38 does not perform any kind of nonce or privilege checks before letting logged-in users modify arbitrary posts.

Ссылки

EPSS

Процентиль: 33%

0.0013

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2023-0405

CVSS3: 4.3

nvd

больше 2 лет назад

The GPT AI Power: Content Writer & ChatGPT & Image Generator & WooCommerce Product Writer & AI Training WordPress plugin before 1.4.38 does not perform any kind of nonce or privilege checks before letting logged-in users modify arbitrary posts.

EPSS

Процентиль: 33%

0.0013

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-862