CVE-2023-41852: WordPress MailMunch – Grow your Email List Plugin <= 3.1.2 is vulnerable to Cross Site Request Forgery (CSRF)
First published: Tue Oct 10 2023(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in MailMunch MailMunch – Grow your Email List plugin <= 3.1.2 versions.
Credit: audit@patchstack.com audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MailMunch | <=3.1.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2023-41852.
What is the severity level of CVE-2023-41852?
The severity level of CVE-2023-41852 is high with a CVSS score of 8.8.
What is the affected software of CVE-2023-41852?
The affected software of CVE-2023-41852 is Mailmunch Mailmunch plugin <= 3.1.2 for WordPress.
What is the vulnerability type of CVE-2023-41852?
CVE-2023-41852 is a Cross-Site Request Forgery (CSRF) vulnerability.
Is there a fix available for CVE-2023-41852?
Yes, a fix is available for CVE-2023-41852. It is recommended to update the Mailmunch Mailmunch plugin to a version higher than 3.1.2.
- agent/author
- agent/type
- agent/softwarecombine
- agent/references
- agent/weakness
- agent/title
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-api
- vendor/mailmunch
- canonical/mailmunch
- version/mailmunch/3.1.2