Skip to main content

Build App Online

2 CVEs product

Monthly

CVE-2023-7264 HIGH This Week

The Build App Online plugin for WordPress is vulnerable to account takeover due to a weak password reset mechanism in all versions up to, and including, 1.0.22. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE WordPress Build App Online
NVD
CVSS 3.1
8.1
EPSS
1.8%
CVE-2023-51478 CRITICAL Act Now

Improper Authentication vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.0.19. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Authentication Bypass Build App Online
NVD
CVSS 3.1
9.8
EPSS
0.1%
EPSS 2% CVSS 8.1
HIGH This Week

The Build App Online plugin for WordPress is vulnerable to account takeover due to a weak password reset mechanism in all versions up to, and including, 1.0.22. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

RCE WordPress Build App Online
NVD
EPSS 0% CVSS 9.8
CRITICAL Act Now

Improper Authentication vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.0.19. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Authentication Bypass Build App Online
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy