CVE-2023-4687

Description

The Page Builder: Pagelayer WordPress plugin before 1.7.7 doesn't prevent unauthenticated attackers from updating a post's header or footer code on scheduled posts.

CVSS breakdown

Affected products

• Unknown / Page Builder: Pagelayer1.3.2 – 1.7.7

References

• MISChttps://wpscan.com/vulnerability/31596fc5-4203-40c4-9b0a-e8a37faafddd