Medium severity4.3NVD Advisory· Published May 7, 2024· Updated Jun 17, 2026
CVE-2023-6810
CVE-2023-6810
Description
The ClickCease Click Fraud Protection plugin for WordPress is vulnerable to unauthorized access of data due to an improper capability check on the get_settings function in all versions up to, and including, 3.2.4. This makes it possible for authenticated attackers, with author access and above, to retrieve the plugin's configured API keys.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<=3.2.4+ 1 more
- (no CPE)range: <=3.2.4
- (no CPE)range: <=3.2.4
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.