CVE-2023-34381

Name of the Vulnerable Software and Affected Versions Zippy versions 1.6.2 and earlier

Description The issue is related to a Missing Authorization vulnerability, also described as a broken access control vulnerability, which affects the Zippy plugin for WordPress. This vulnerability allows exploiting incorrectly configured access control security levels. Users are urged to update to the latest version to mitigate risks.

Recommendations Update to the latest version of the Zippy plugin to resolve the issue. As a temporary workaround, consider restricting access to the Zippy plugin until a patch is available.