[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fG40pjpzqzjkNopWnNGoi4T42BWgCtQ3b8eI-ZBr1q-0":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2023-46644","wordpress-cta-missing-authorization-via-multiple-ajax-actions","WordPress CTA \u003C= 1.5.8 - Missing Authorization via Multiple AJAX Actions","The WordPress CTA plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX actions in versions up to, and including, 1.5.8. This makes it possible for unauthenticated attackers to perform unauthorized actions, such as adding new call to actions.","easy-sticky-sidebar",null,"\u003C=1.5.8","1.5.9","medium",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:L","Missing Authorization","2023-10-25 00:00:00","2024-03-29 17:32:12",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa65a1f25-04e5-4ca3-9b2d-1b78254a8871?source=api-prod",157]