{"vulnerability": "cve-2023-5506", "sightings": [{"uuid": "a2e6885f-cc8b-4431-b395-b51b384b56f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-5506", "type": "seen", "source": "https://t.me/arpsyndicate/2451", "content": "#ExploitObserverAlert\n\nCVE-2023-5506\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-5506. The ImageMapper plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'imgmap_delete_area_ajax' function in versions up to, and including, 1.2.6. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to delete arbitrary posts and pages.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 1.4\nNVD-ES: 2.8", "creation_timestamp": "2024-01-04T11:51:57.000000Z"}]}