CVE-2023-0557NVD

Vulnerability Summary

The ContentStudio plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 1.2.5. This could allow unauthenticated attackers to obtain a nonce needed for the creation of posts.

Severity Level

HIGH(7.5)

Published Date

Jan 27, 2023

Last Modified

Apr 8, 2026

Exploitation Status

????

EPSS Score (30-Day)

1.28%Probability

Root Weakness (CWE)

CWE-200: Unknown/Unlisted Weakness ↗

Refer to the official MITRE database for detailed architectural specifications regarding this weakness.

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityNone

IntegrityHigh

AvailabilityNone

External References

https://plugins.trac.wordpress.org/browser/contentstudio/trunk/contentstudio-plugin.php#L709
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=2851006%40contentstudio%2Ftrunk&old=2844028%40contentstudio%2Ftrunk&sfp_email=&sfph_mail=
https://www.wordfence.com/threat-intel/vulnerabilities/id/62eb136f-3cb0-40dc-a154-015a7fa1077b?source=cve
https://plugins.trac.wordpress.org/browser/contentstudio/trunk/contentstudio-plugin.php#L709
https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=2851006%40contentstudio%2Ftrunk&old=2844028%40contentstudio%2Ftrunk&sfp_email=&sfph_mail=
https://www.wordfence.com/threat-intel/vulnerabilities/id/62eb136f-3cb0-40dc-a154-015a7fa1077b

Critical Alert 3 Active Exploits Detected Today

Critical Alert

CVE Watchtower

CVE-2023-0557NVD

Vulnerability Summary

External References