CVE-2023-23731: WordPress WishSuite Plugin <= 1.3.3 is vulnerable to Cross Site Request Forgery (CSRF)
First published: Tue Jul 11 2023(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in HasTheme WishSuite plugin <= 1.3.3 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| HasTheme WishSuite | <1.3.4 |
Remedy
Update to 1.3.4 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of the vulnerability in the HasTheme WishSuite plugin?
The CVE ID of the vulnerability is CVE-2023-23731.
What is the severity of CVE-2023-23731?
The severity of CVE-2023-23731 is high (8.8).
What is the affected software by CVE-2023-23731?
The affected software is the HasTheme WishSuite plugin version 1.3.3 and below.
What is the CWE ID of CVE-2023-23731?
The CWE ID of CVE-2023-23731 is 352.
Is there a patch or fix available for CVE-2023-23731?
Yes, a patch for CVE-2023-23731 is available. More details can be found in the reference link provided.
- agent/type
- agent/softwarecombine
- agent/weakness
- agent/remedy
- agent/references
- agent/title
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- collector/nvd-latest
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/hasthemes
- canonical/hastheme wishsuite