CVE-2023-6600P2MEDIUMCVSS 5.4Exploitedfixed in 5.7.102024-01-03
CVE-2023-6600 [MEDIUM] CWE-862 CVE-2023-6600: The OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy. plugin for WordPress is vulnerable to un
The OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy. plugin for WordPress is vulnerable to unauthorized modification of data and Stored Cross-Site Scripting due to a missing capability check on the update_settings() function hooked via admin_init in all versions up to, and including, 5.7.9. This makes it possible for unauthenticated attackers t
nvd