exploitDog

GHSA-6gww-6m42-44mx

Опубликовано: 04 фев. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information.

The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information.

Ссылки

EPSS

Процентиль: 44%

0.00219

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-0466

CVSS3: 5.3

nvd

около 1 года назад

The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak sensei_email and sensei_message Information.

EPSS

Процентиль: 44%

0.00219

Низкий

5.3 Medium

CVSS3

CVE ID