VYPR
Medium severity4.3NVD Advisory· Published Jan 22, 2024· Updated Jun 17, 2026

CVE-2023-6384

CVE-2023-6384

Description

The WP User Profile Avatar WordPress plugin before 1.0.1 does not properly check for authorisation, allowing authors to delete and update arbitrary avatar

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.