CVE-2023-41870

Name of the Vulnerable Software and Affected Versions WP Crowdfunding versions 2.1.5 and earlier

Description The issue is related to a Missing Authorization vulnerability in Themeum WP Crowdfunding, which allows exploiting incorrectly configured access control security levels.

Recommendations For versions 2.1.5 and earlier, update to a version later than 2.1.5 to resolve the issue. As a temporary workaround, consider restricting access to sensitive areas of the crowdfunding platform to minimize the risk of exploitation.