Vulnerability CVE-2023-6824
Published: 2024-01-16

Description:
The WP Customer Area WordPress plugin before 8.2.1 does not properly validates user capabilities in some of its AJAX actions, allowing any users to retrieve other user's account address.

 References:
https://wpscan.com/vulnerability/a224b984-770a-4534-b689-0701b582b388/
Copyright 2026, cxsecurity.com

 

Back to Top