exploitDog

GHSA-628c-9prp-wxqw

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The Grand Flagallery plugin before 4.25 for WordPress allows remote attackers to obtain the installation path via a request to (1) flagallery-skins/banner_widget_default/gallery.php or (2) flash-album-gallery/skins/banner_widget_default/gallery.php.

The Grand Flagallery plugin before 4.25 for WordPress allows remote attackers to obtain the installation path via a request to (1) flagallery-skins/banner_widget_default/gallery.php or (2) flash-album-gallery/skins/banner_widget_default/gallery.php.

Ссылки

EPSS

Процентиль: 50%

0.00264

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-8491

CVSS3: 5.3

nvd

больше 8 лет назад

The Grand Flagallery plugin before 4.25 for WordPress allows remote attackers to obtain the installation path via a request to (1) flagallery-skins/banner_widget_default/gallery.php or (2) flash-album-gallery/skins/banner_widget_default/gallery.php.

EPSS

Процентиль: 50%

0.00264

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200