High severity7.5NVD Advisory· Published Jan 15, 2024· Updated Jun 17, 2026
CVE-2023-6029
CVE-2023-6029
Description
The EazyDocs WordPress plugin before 2.3.6 does not have authorization and CSRF checks when handling documents and does not ensure that they are documents from the plugin, allowing unauthenticated users to delete arbitrary posts, as well as add and delete documents/sections.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <2.3.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/7a0aaf85-8130-4fd7-8f09-f8edc929597envdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.