CVE-2023-51377

Source
https://cve.org/CVERecord?id=CVE-2023-51377
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-51377.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-51377
Published
2024-06-14T05:45:05.071Z
Modified
2026-07-15T01:48:55.575356476Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
Summary
WordPress Everest Forms plugin <= 2.0.3 - Broken Access Control vulnerability
Details

Missing Authorization vulnerability in WPEverest Everest Forms.This issue affects Everest Forms: from n/a through 2.0.3.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/51xxx/CVE-2023-51377.json",
    "cwe_ids": [
        "CWE-862"
    ],
    "unresolved_ranges": [
        {
            "extracted_events": [
                {
                    "last_affected": "2.0.3"
                }
            ],
            "source": "AFFECTED_FIELD"
        },
        {
            "extracted_events": [
                {
                    "fixed": "2.0.3"
                }
            ],
            "source": "DESCRIPTION"
        }
    ],
    "cna_assigner": "Patchstack"
}
References

Affected packages

Git / github.com/wpeverest/everest-forms

Affected ranges

Type
GIT
Repo
https://github.com/wpeverest/everest-forms
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "cpe": "cpe:2.3:a:wpeverest:everest_forms:*:*:*:*:*:wordpress:*:*",
    "source": "CPE_RANGE",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.0.3.1"
        }
    ]
}

Affected versions

1.*
1.0.0
1.0.1
1.0.2
1.1.0
1.1.0-rc.1
1.1.3
1.1.4
1.2.0
1.2.0-rc.1
1.3.0
1.3.2
1.3.4
1.4.0
1.4.0-beta
1.4.0-beta2
1.4.0-beta3
1.4.0-beta4
1.4.0-beta5
1.4.0-beta6
1.4.1
1.4.2
1.4.3
1.4.4
1.4.5
1.4.6
1.4.8
1.4.9
1.5.0
1.5.1
1.5.10
1.5.2
1.5.4
1.5.5
1.5.6
1.5.7
1.5.8
1.5.9
1.6.0
1.6.1
1.6.2
1.6.3
1.6.4
1.6.5
1.6.6
1.6.6.1
1.6.7
1.7.0
1.7.0.1
1.7.0.2
1.7.0.3
1.7.1
1.7.2
1.7.2.1
1.7.2.2
1.7.3
1.7.4
1.7.5
1.7.5.1
1.7.5.2
1.7.6
1.7.7
1.7.7.1
1.7.7.2
1.7.8
1.7.9
1.8.0
1.8.0.1
1.8.1
1.8.2
1.8.2.1
1.8.2.2
1.8.2.3
1.8.3
1.8.4
1.8.5
1.8.6
1.8.7
1.8.8
1.8.9
1.9.0
1.9.0.1
1.9.1
1.9.2
1.9.3
1.9.4
1.9.4.1
1.9.5
1.9.6
1.9.7
1.9.8
1.9.9
2.*
2.0.0
2.0.0.1
2.0.1
2.0.3
v1.*
v1.4.0-beta

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-51377.json"