CVE-2023-48758

Name: Websites susceptible to CVE-2023-48758
Creator: WebTechSurvey

CVE-2023-48758

WordPress JetEngine plugin <= 3.2.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetEngine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetEngine: from n/a through 3.2.4.

We have discovered 22,249 live websites that are affected by CVE-2023-48758.

Test my site

Affected Software


Product	Crocoblock JetEngine
Category	Wordpress Plugins
Vulnerable Domains	22,249 live websites (27.16% of Crocoblock JetEngine install base)
Vulnerable Versions	from 0 through 3.2.4
Vulnerable Versions Count	146 versions ( 70.87% of all versions)

Common Weakness Enumeration

CWE-862 Missing Authorization

Available Reports

Website List

Details

Published - Jan 2, 2025
Updated - Jan 2, 2025

Credits

Rafie Muhammad (Patchstack) (finder)

CWE

CWE-862

CVE References

CWE References

cwe.mitre.org

CVE-2023-48758 usage by Country

United States	7,368 websites

Germany	2,242 websites
Brazil	1,510 websites
France	1,172 websites
Russia	793 websites
Spain	744 websites
GB	664 websites
Cyprus	628 websites
Israel	563 websites
Netherlands	554 websites

CVE-2023-48758 usage by TLD

.com	8,084 websites
.com.br	2,109 websites
.org	749 websites
.de	734 websites
.ru	646 websites
.nl	590 websites
.co.uk	456 websites
.it	424 websites
.es	401 websites
.com.au	343 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2023-48758

Top websites that are affected by CVE-2023-48758. Please click on the "Contact us" link to get more information.

Domain	Country	Rank
**********.com	United States	,*
************.com	United States	,*
*************.com	United States	,*
*********.com	United States	,*
*******.com	Hong Kong	,*
***********.io	United States	,*
*************.com	United States	,*
******************.com	United States	,*
*******.io	United States	,*
**********.com	United States	,*

See full domain list

FAQ

CVE-2023-48758 is Missing Authorization in Crocoblock JetEngine

A total of 22,249 websites have been identified as vulnerable to CVE-2023-48758, discovered through global website indexing conducted by WebTechSurvey.

Crocoblock JetEngine is susceptible to CVE-2023-48758 vulnerability.

Crocoblock JetEngine versions before, and including, 3.2.4 are vulnerable to CVE-2023-48758.

References

https://patchstack.com/database/wordpress/plugin/jet-engine/vulnerability/wordpress-jetengine-plugin-3-2-4-broken-access-control-vulnerability?_s_id=cve

CVE-2023-48758

Affected Software

Common Weakness Enumeration

Available Reports

Details

Credits

CWE

CVE References

CWE References

CVE-2023-48758 usage by Country

CVE-2023-48758 usage by TLD

Vulnerable Versions

Websites affected by CVE-2023-48758

What type of vulnerability is CVE-2023-48758?

How many websites are susceptible to the vulnerability identified as CVE-2023-48758?

What technological component facilitates the exploitation of the CVE-2023-48758 vulnerability?

What versions of Crocoblock JetEngine are affected by CVE-2023-48758?

References