5.4
CVE-2023-45272
- EPSS 0.29%
- Veröffentlicht 02.01.2025 15:15:19
- Zuletzt bearbeitet 28.04.2026 19:21:31
- Quelle audit@patchstack.com
- CVE-Watchlists
- Unerledigt
LoginWordPress 10Web Map Builder for Google Maps plugin <= 1.0.73 - Notice Dismissal Vulnerability
10Web Map Builder for Google Maps <= 1.0.73 - Missing Authorization to Notice Dismissal
Missing Authorization vulnerability in 10Web 10Web Map Builder for Google Maps allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 10Web Map Builder for Google Maps: from n/a through 1.0.73.
Mögliche Gegenmaßnahme
10Web Map Builder for Google Maps: Update to version 1.0.74, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
10web ≫ Map Builder For Google Maps SwPlatformwordpress Version < 1.0.74
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
10Web Map Builder for Google Maps
Version
[*, 1.0.74)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.2 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 2.8 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
|
| audit@patchstack.com | 5.4 | 2.8 | 2.5 |
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
|
CWE-862 Missing Authorization
The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
https://patchstack.com/database/wordpress/plugin/wd-google-maps/vulnerability/wordpress-10web-map-builder-for-google-maps-plugin-1-0-73-notice-dismissal-vulnerability?_s_id=cve
https://www.wordfence.com/threat-intel/vulnerabilities/id/63666c16-9f68-4a27-b163-4c25f0a7589e