CVE-2023-51682
WordPress MC4WP plugin <= 4.9.9 - Broken Access Control vulnerabilityMissing Authorization vulnerability in ibericode MC4WP.This issue affects MC4WP: from n/a through 4.9.9.
We have discovered 38,879 live websites that are affected by CVE-2023-51682.
Affected Software
| Product |  MailChimp for WordPress |
| Category | Marketing Automation |
| Vulnerable Domains | 38,879 live websites (24% of MailChimp for WordPress install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 100 versions ( 80% of all versions) |
Common Weakness Enumeration
CWE-862 Missing AuthorizationDetails
- Published - Jun 11, 2024
- Updated - Aug 2, 2024
Credits
- Rafie Muhammad (Patchstack) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2023-51682 United States | 11,469 websites |
 Germany | 3,137 websites |
 Italy | 2,688 websites |
 France | 2,534 websites |
 GB | 2,022 websites |
 Netherlands | 1,179 websites |
 Spain | 1,130 websites |
 Australia | 862 websites |
 Canada | 861 websites |
 Brazil | 714 websites |
Website Distribution by TLD
Number of websites using CVE-2023-51682| .com | 17,939 websites |
| .org | 2,115 websites |
| .it | 1,782 websites |
| .co.uk | 1,003 websites |
| .de | 970 websites |
| .nl | 929 websites |
| .fr | 859 websites |
| .net | 812 websites |
| .com.au | 705 websites |
| .com.br | 662 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2023-51682
Top websites that are affected by CVE-2023-51682. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ********.com | GB | *,*** | |
| *******.com | United States | **,*** | |
| ******.com | United States | **,*** | |
| ***********.com | GB | **,*** | |
| ********.com | United States | **,*** | |
| ************.com | United States | **,*** | |
| *********.com | United States | **,*** | |
| *********.com | United States | **,*** | |
| **************.org | United States | **,*** | |
| ************.com | United States | **,*** |
FAQ
CVE-2023-51682 is Missing Authorization in MailChimp for WordPress
A total of 38,879 websites have been identified as vulnerable to CVE-2023-51682, based on global website indexing conducted by WebTechSurvey.
The MailChimp for WordPress is affected by the CVE-2023-51682 vulnerability.
MailChimp for WordPress versions up to and including 4.9.9 are vulnerable to CVE-2023-51682.