Vulnerability CVE-2023-6741
Published: 2024-01-16

Description:
The WP Customer Area WordPress plugin before 8.2.1 does not properly validate users capabilities in some of its AJAX actions, allowing malicious users to edit other users' account address.

 References:
https://wpscan.com/vulnerability/9debe1ea-18ad-44c4-8078-68eb66d36c4a/
Copyright 2026, cxsecurity.com

 

Back to Top