CVE-2023-0443
- Reference to the description:
- Description:
- The AnyWhere Elementor WordPress plugin before 1.2.8 discloses a Freemius Secret Key which could be used by an attacker to purchase the pro subscription using test credit card numbers without actually paying the amount. Such key has been revoked.
- Last updated date:
- 06/05/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/05/2023
- Reference url to background
https://wpscan.com/vulnerability/471f3226-8f90-43d1-b826-f11ef4bbd602