CVE-2023-51408
WordPress WP Optin Wheel Plugin <= 1.4.3 is vulnerable to Sensitive Data ExposureExposure of Sensitive Information to an Unauthorized Actor vulnerability in StudioWombat WP Optin Wheel – Gamified Optin Email Marketing Tool for WordPress and WooCommerce.This issue affects WP Optin Wheel – Gamified Optin Email Marketing Tool for WordPress and WooCommerce: from n/a through 1.4.3.
We have discovered 80 live websites that are affected by CVE-2023-51408.
Affected Software
| Product |  WP Optin Wheel |
| Category | Wordpress Plugins |
| Vulnerable Domains | 80 live websites (18% of WP Optin Wheel install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 15 versions ( 71% of all versions) |
Common Weakness Enumeration
CWE-532 Insertion of Sensitive Information into Log FileDetails
- Published - Jan 8, 2024
- Updated - May 23, 2025
Credits
- Joshua Chan (Patchstack Alliance) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2023-51408 United States | 24 websites |
 France | 8 websites |
 Germany | 7 websites |
 Hungary | 4 websites |
 Netherlands | 4 websites |
 Singapore | 3 websites |
 Vietnam | 3 websites |
 Chile | 2 websites |
 Cyprus | 2 websites |
 Spain | 2 websites |
Website Distribution by TLD
Number of websites using CVE-2023-51408| .com | 41 websites |
| .nl | 4 websites |
| .fr | 3 websites |
| .es | 2 websites |
| .net | 2 websites |
| .ch | 1 websites |
| .co.uk | 1 websites |
| .com.br | 1 websites |
| .de | 1 websites |
| .dk | 1 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-51408
Top websites that are affected by CVE-2023-51408. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ********.net | Germany | ***,*** | |
| ************.com | United States | ***,*** | |
| ****.com | United States | *,***,*** | |
| *************.com |  Slovenia | *,***,*** | |
| **************.com | United States | *,***,*** | |
| ***********.com | United States | *,***,*** | |
| *************.in |  India | *,***,*** | |
| ******.com |  Norway | *,***,*** | |
| **********.com | France | *,***,*** | |
| ****************.com | United States | *,***,*** |
FAQ
CVE-2023-51408 is Insertion of Sensitive Information into Log File in WP Optin Wheel
A total of 80 websites have been identified as vulnerable to CVE-2023-51408, based on global website indexing conducted by WebTechSurvey.
The WP Optin Wheel is affected by the CVE-2023-51408 vulnerability.
WP Optin Wheel versions up to and including 1.4.3 are vulnerable to CVE-2023-51408.