CVE-2023-3209
- Reference to the description:
- Description:
- The MStore API WordPress plugin before 3.9.7 does not secure most of its AJAX actions by implementing privilege checks, nonce checks, or a combination of both.
- Last updated date:
- 07/19/2023
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/19/2023
- Reference url to background
https://wpscan.com/vulnerability/970735f1-24bb-441c-89b6-5a0959246d6c