CVE-2023-6066

CVSS v3 4.3 MEDIUM

4.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

T

he WP Custom Widget area WordPress plugin through 1.2.5 does not properly apply capability and nonce checks on any of its AJAX action callback functions, which could allow attackers with subscriber+ privilege to create, delete or modify menus on the site.

References

Link	Resource
https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623	Exploit Third Party Advisory
https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:kishorkhambu:wp_custom_widget_area:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 08:43

Type	Values Removed	Values Added
References	~~() https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623 - Exploit, Third Party Advisory~~	() https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623 - Exploit, Third Party Advisory

Information

Published : 2024-01-15 16:15

Updated : 2025-05-12 15:15

NVD link : CVE-2023-6066

Mitre link : CVE-2023-6066

CVE.ORG link : CVE-2023-6066

JSON object : View

Products Affected

kishorkhambu

wp_custom_widget_area

CWE

CWE-862

Missing Authorization

{"id": "CVE-2023-6066", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}]}, "published": "2024-01-15T16:15:12.420", "references": [{"url": "https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623", "tags": ["Exploit", "Third Party Advisory"], "source": "[email protected]"}, {"url": "https://wpscan.com/vulnerability/f8f84d47-49aa-4258-a8a6-3de8e7342623", "tags": ["Exploit", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-862"}]}], "descriptions": [{"lang": "en", "value": "The WP Custom Widget area WordPress plugin through 1.2.5 does not properly apply capability and nonce checks on any of its AJAX action callback functions, which could allow attackers with subscriber+ privilege to create, delete or modify menus on the site."}, {"lang": "es", "value": "El complemento de WordPress WP Custom Widget area hasta la versi\u00f3n 1.2.5 no aplica correctamente la capacidad y las comprobaciones nonce en ninguna de sus funciones de devoluci\u00f3n de llamada de acci\u00f3n AJAX, lo que podr\u00eda permitir a atacantes con privilegios de suscriptor+ crear, eliminar o modificar men\u00fas en el sitio."}], "lastModified": "2025-05-12T15:15:57.237", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:kishorkhambu:wp_custom_widget_area:*:*:*:*:*:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "031DD6B0-E176-49A2-9DCD-C4C3328B857A", "versionEndIncluding": "1.2.5"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}