CVE-2023-39998
WordPress BeTheme theme <= 27.1.1 - Author+ Broken Access Control vulnerabilityMissing Authorization vulnerability in Muffingroup Betheme.This issue affects Betheme: from n/a through 27.1.1.
We have discovered 68,577 live websites that are affected by CVE-2023-39998.
Affected Software
| Product | |
| Category | Wordpress Themes |
| Vulnerable Domains | 68,577 live websites (61.89% of BeTheme install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 543 versions ( 89.31% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Jun 19, 2024
- Updated - Aug 2, 2024
Credits
- Rafie Muhammad (Patchstack) (finder)
CWE
CVE References
CWE References
CVE-2023-39998 usage by Country
 United States | 19,923 websites |
 Germany | 9,431 websites |
 France | 4,103 websites |
 Brazil | 2,887 websites |
 Italy | 2,454 websites |
 Poland | 2,320 websites |
 GB | 2,013 websites |
 Spain | 1,912 websites |
 Netherlands | 1,722 websites |
 Russia | 1,636 websites |
CVE-2023-39998 usage by TLD
| .com | 25,613 websites |
| .de | 4,553 websites |
| .com.br | 3,705 websites |
| .fr | 2,605 websites |
| .it | 2,140 websites |
| .org | 2,017 websites |
| .pl | 1,840 websites |
| .nl | 1,695 websites |
| .ru | 1,320 websites |
| .co.uk | 1,291 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-39998
Top websites that are affected by CVE-2023-39998. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *********.nl | United States | *,*** | |
| *****************.com | United States | **,*** | |
| ******.fr | France | **,*** | |
| **********.com | United States | **,*** | |
| **********.com | United States | **,*** | |
| ***********.de | Germany | **,*** | |
| ***********.com |  Singapore | ***,*** | |
| *******.**.ke |  Kenya | ***,*** | |
| *******.de | Germany | ***,*** | |
| *******.com | United States | ***,*** |
FAQ
CVE-2023-39998 is Missing Authorization in BeTheme
A total of 68,577 websites have been identified as vulnerable to CVE-2023-39998, discovered through global website indexing conducted by WebTechSurvey.
BeTheme is susceptible to CVE-2023-39998 vulnerability.
BeTheme versions before, and including, 27.1.1 are vulnerable to CVE-2023-39998.