Vulnerabilities > CVE-2023-3131 - Unspecified vulnerability in Inspireui Mstore API

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
inspireui
NVD
Published: 2023-07-10
Updated: 2023-11-07

Summary

The MStore API WordPress plugin before 3.9.7 does not secure most of its AJAX actions by implementing privilege checks, nonce checks, or a combination of both.

Vulnerable Configurations

Part Description Count
Application
Inspireui
108

References