Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total21

Critical1

High2

Medium18

Search Severity Year Type Sort Order

Reset

Showing 21-21 of 21 records

Threat Entry Updated 2024-11-21

CVE-2023-2083 - Essential Blocks Plugin

The Essential Blocks plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on the save function in versions up to, and including, 4.0.6. This makes it possible for subscriber-level attackers to save plugin settings. While a nonce check is present, it is only executed when a nonce is provided. Not providing a nonce results in the nonce verification to be skipped. There is no capability check.

PLUGIN Essential Blocks

CVE-2023-2083

MEDIUM CVSS 4.3 2023-06-09

Risk Score

Open Full Technical Breakdown

Scroll to top

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2023-2083 - Essential Blocks Plugin

Company Links

Contact Us