exploitDog

GHSA-64v9-jgpj-cjqg

Опубликовано: 16 дек. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The Events Calendar WordPress plugin before 6.8.2.1 is missing access checks in the REST API, allowing for unauthenticated users to access information about password protected events.

The Events Calendar WordPress plugin before 6.8.2.1 is missing access checks in the REST API, allowing for unauthenticated users to access information about password protected events.

Ссылки

EPSS

Процентиль: 92%

0.07699

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2024-5333

CVSS3: 5.3

nvd

около 1 года назад

The Events Calendar WordPress plugin before 6.8.2.1 is missing access checks in the REST API, allowing for unauthenticated users to access information about password protected events.

EPSS

Процентиль: 92%

0.07699

Низкий

5.3 Medium

CVSS3

CVE ID