How severe is CVE-2023-51546?

High severity. CVSS v3 base score is 7.2 out of 10.

Is CVE-2023-51546 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Privilege escalation in Webtoffee Woocommerce Pdf Invoices, Packing Slips, Delivery Notes And Shipping Labels

CVE-2023-51546

Improper Privilege Management vulnerability in WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels allows Privilege Escalation.This issue affects WooCommerce PDF Invoices, Packing Slips, Delivery Notes and…

Vulnerability class: Privilege Escalation

EPSS: 0.006 (45.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Webtoffee Woocommerce Pdf Invoices, Packing Slips, Delivery Notes And Shipping Labels — versions n/a

Weakness classification (CWE)

CWE-269 — Improper Privilege Management

Public proof-of-concept exploits

20142995/nuclei-templates

References

patchstack.com/database/vulnerability/print-invoices-packing-slip-labels-for-wo… (vdb-entry)

Frequently asked questions

What is CVE-2023-51546?: CVE-2023-51546 is a high-severity vulnerability in Webtoffee Woocommerce Pdf Invoices, Packing Slips, Delivery Notes And Shipping Labels, classified under Improper Privilege Management. CVSS score: 7.2/10. Published 2024-05-17.
How severe is CVE-2023-51546?: High severity. CVSS v3 base score is 7.2 out of 10.
Is CVE-2023-51546 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.