Medium severity5.3NVD Advisory· Published Jan 11, 2024· Updated Apr 8, 2026
CVE-2023-6496
CVE-2023-6496
Description
The Manage Notification E-mails plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.8.5 via the card_famne_export_settings function. This makes it possible for unauthenticated attackers to obtain plugin settings.
Affected products
2cpe:2.3:a:freeamigos:manage_notification_e-mails:*:*:*:*:*:wordpress:*:*+ 1 more
- cpe:2.3:a:freeamigos:manage_notification_e-mails:*:*:*:*:*:wordpress:*:*range: <1.8.6
- (no CPE)range: <=1.8.5
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/changesetnvdPatch
- www.wordfence.com/threat-intel/vulnerabilities/id/048bc117-88df-44b3-a30c-692bad23050fnvdThird Party Advisory
News mentions
0No linked articles in our index yet.