← Back to CVE List
CVE-2023-6384
Published:
2024-01-22T20:15Z
Last Modified:
2024-11-21T08:43Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The WP User Profile Avatar WordPress plugin before 1.0.1 does not properly check for authorisation, allowing authors to delete and update arbitrary avatar > MITRE Terms of Use apply – see LICENSE‑MITRE.txt