Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-5823

Cross-Site Request Forgery (CSRF) vulnerability in ThemeKraft TK Google Fonts GDPR Compliant plugin <= 2.2.11 versions.

Published

2023-11-06T12:15:08.860

Last Modified

2025-02-19T22:15:22.040

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses

Type: Secondary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	themekraft	tk_google_fonts_gdpr_compliant	≤ 2.2.11	Yes

References

https://patchstack.com/database/vulnerability/tk-google-fonts/wordpress-tk-google-fonts-gdpr-compliant-plugin-2-2-11-cross-site-request-forgery-csrf-vulnerability?_s_id=cve Third Party Advisory ([email protected])
https://patchstack.com/database/vulnerability/tk-google-fonts/wordpress-tk-google-fonts-gdpr-compliant-plugin-2-2-11-cross-site-request-forgery-csrf-vulnerability?_s_id=cve Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)