Vulnerability Description
Cross-Site Request Forgery (CSRF) vulnerability in Prem Tiwari Disable WordPress Update Notifications and auto-update Email Notifications plugin <= 2.3.3 versions.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Disable Wordpress Update Notifications And Auto-Update Email Notifications Project | Disable Wordpress Update Notifications And Auto-Update Email Notifications | <= 2.3.3 |
Related Weaknesses (CWE)
References
- https://patchstack.com/database/vulnerability/disable-update-notifications/wordpThird Party Advisory
- https://patchstack.com/database/vulnerability/disable-update-notifications/wordpThird Party Advisory
FAQ
What is CVE-2023-34029?
CVE-2023-34029 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-Site Request Forgery (CSRF) vulnerability in Prem Tiwari Disable WordPress Update Notifications and auto-update Email Notifications plugin <= 2.3.3 versions.
How severe is CVE-2023-34029?
CVE-2023-34029 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-34029?
Check the references section above for vendor advisories and patch information. Affected products include: Disable Wordpress Update Notifications And Auto-Update Email Notifications Project Disable Wordpress Update Notifications And Auto-Update Email Notifications.