Vulnerabilities > CVE-2023-3601 - Unspecified vulnerability in Webfactoryltd Simple Author BOX

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

webfactoryltd

NVD

Published: 2023-08-14

Updated: 2023-11-07

Summary

The Simple Author Box WordPress plugin before 2.52 does not verify a user ID before outputting information about that user, leading to arbitrary user information disclosure to users with a role as low as Contributor.

Vulnerable Configurations

Part	Description	Count
Application	Webfactoryltd Webfactoryltd Simple Author BOX 1.0 Webfactoryltd Simple Author BOX 1.1 Webfactoryltd Simple Author BOX 1.2 Webfactoryltd Simple Author BOX 1.3 Webfactoryltd Simple Author BOX 1.4 Webfactoryltd Simple Author BOX 1.5 Webfactoryltd Simple Author BOX 1.6 Webfactoryltd Simple Author BOX 1.7 Webfactoryltd Simple Author BOX 1.8 Webfactoryltd Simple Author BOX 1.9 Webfactoryltd Simple Author BOX 2.0 Webfactoryltd Simple Author BOX 2.0.1 Webfactoryltd Simple Author BOX 2.0.2 Webfactoryltd Simple Author BOX 2.0.3 Webfactoryltd Simple Author BOX 2.0.4 Webfactoryltd Simple Author BOX 2.0.5 Webfactoryltd Simple Author BOX 2.0.6 Webfactoryltd Simple Author BOX 2.0.7 Webfactoryltd Simple Author BOX 2.0.8 Webfactoryltd Simple Author BOX 2.0.9 Webfactoryltd Simple Author BOX 2.1.0 Webfactoryltd Simple Author BOX 2.1.1 Webfactoryltd Simple Author BOX 2.1.2 Webfactoryltd Simple Author BOX 2.1.3 Webfactoryltd Simple Author BOX 2.1.4 Webfactoryltd Simple Author BOX 2.1.5 Webfactoryltd Simple Author BOX 2.2.0 Webfactoryltd Simple Author BOX 2.2.1 Webfactoryltd Simple Author BOX 2.2.2 Webfactoryltd Simple Author BOX 2.3.0 Webfactoryltd Simple Author BOX 2.3.1 Webfactoryltd Simple Author BOX 2.3.2 Webfactoryltd Simple Author BOX 2.3.3 Webfactoryltd Simple Author BOX 2.3.5 Webfactoryltd Simple Author BOX 2.3.6 Webfactoryltd Simple Author BOX 2.3.7 Webfactoryltd Simple Author BOX 2.3.8 Webfactoryltd Simple Author BOX 2.3.9 Webfactoryltd Simple Author BOX 2.3.10 Webfactoryltd Simple Author BOX 2.3.11 Webfactoryltd Simple Author BOX 2.3.12 Webfactoryltd Simple Author BOX 2.3.13 Webfactoryltd Simple Author BOX 2.3.14 Webfactoryltd Simple Author BOX 2.3.15 Webfactoryltd Simple Author BOX 2.3.16 Webfactoryltd Simple Author BOX 2.3.18 Webfactoryltd Simple Author BOX 2.3.19 Webfactoryltd Simple Author BOX 2.3.20 Webfactoryltd Simple Author BOX 2.3.21 Webfactoryltd Simple Author BOX 2.3.22 Webfactoryltd Simple Author BOX 2.4 Webfactoryltd Simple Author BOX 2.41 Webfactoryltd Simple Author BOX 2.42 Webfactoryltd Simple Author BOX 2.45 Webfactoryltd Simple Author BOX 2.47 Webfactoryltd Simple Author BOX 2.48 Webfactoryltd Simple Author BOX 2.49 Webfactoryltd Simple Author BOX 2.50 Webfactoryltd Simple Author BOX 2.51	59

References

https://wpscan.com/vulnerability/c0cc513e-c306-4920-9afb-e33d95a7292f