CVE-2023-51484

Improper Authentication vulnerability in wp-buy Login as User or Customer (User Switching) allows Privilege Escalation.This issue affects Login as User or Customer (User Switching): from n/a through 3.8.
Configurations

No configuration.

History

28 Apr 2026, 19:22

Type Values Removed Values Added
CWE CWE-266 CWE-287
References
  • {'url': 'https://patchstack.com/database/Wordpress/Plugin/login-as-customer-or-user/vulnerability/wordpress-login-as-user-or-customer-plugin-3-8-unauthenticated-account-takeover-vulnerability?_s_id=cve', 'source': 'audit@patchstack.com'}
Summary (en) Incorrect Privilege Assignment vulnerability in wp-buy Login as User or Customer (User Switching) login-as-customer-or-user allows Privilege Escalation.This issue affects Login as User or Customer (User Switching): from n/a through <= 3.8. (en) Improper Authentication vulnerability in wp-buy Login as User or Customer (User Switching) allows Privilege Escalation.This issue affects Login as User or Customer (User Switching): from n/a through 3.8.

23 Apr 2026, 15:18

Type Values Removed Values Added
References
  • () https://patchstack.com/database/Wordpress/Plugin/login-as-customer-or-user/vulnerability/wordpress-login-as-user-or-customer-plugin-3-8-unauthenticated-account-takeover-vulnerability?_s_id=cve -
Summary (en) Improper Authentication vulnerability in wp-buy Login as User or Customer (User Switching) allows Privilege Escalation.This issue affects Login as User or Customer (User Switching): from n/a through 3.8. (en) Incorrect Privilege Assignment vulnerability in wp-buy Login as User or Customer (User Switching) login-as-customer-or-user allows Privilege Escalation.This issue affects Login as User or Customer (User Switching): from n/a through <= 3.8.
CWE CWE-287 CWE-266

21 Nov 2024, 08:38

Type Values Removed Values Added
References () https://patchstack.com/database/vulnerability/login-as-customer-or-user/wordpress-login-as-user-or-customer-plugin-3-8-unauthenticated-account-takeover-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/login-as-customer-or-user/wordpress-login-as-user-or-customer-plugin-3-8-unauthenticated-account-takeover-vulnerability?_s_id=cve -

25 Apr 2024, 13:18

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de autenticación incorrecta en wp-buy Iniciar sesión como usuario o cliente (cambio de usuario) permite Privilege Escalation. Este problema afecta el inicio de sesión como usuario o cliente (cambio de usuario): desde n/a hasta 3.8.

25 Apr 2024, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-25 09:15

Updated : 2026-06-17 06:41


NVD link : CVE-2023-51484

Mitre link : CVE-2023-51484

CVE.ORG link : CVE-2023-51484


JSON object : View

Products Affected

No product.

CWE
CWE-287

Improper Authentication