Vulnerabilities > Gvectors > Wpdiscuz > 7.3.11

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-3998 Missing Authorization vulnerability in Gvectors Wpdiscuz
The wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the userRate function in versions up to, and including, 7.6.3.
network
low complexity
gvectors CWE-862
5.3
5.3
2022-02-21 CVE-2022-23984 Information Exposure vulnerability in Gvectors Wpdiscuz
Sensitive information disclosure discovered in wpDiscuz WordPress plugin (versions <= 7.3.11).
network
low complexity
gvectors CWE-200
7.5
7.5