exploitDog

GHSA-6m7w-4635-j5fp

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The Job Manager plugin before 0.7.25 allows remote attackers to read arbitrary CV files via a brute force attack to the WordPress upload directory structure, related to an insecure direct object reference.

The Job Manager plugin before 0.7.25 allows remote attackers to read arbitrary CV files via a brute force attack to the WordPress upload directory structure, related to an insecure direct object reference.

Ссылки

EPSS

Процентиль: 99%

0.86142

Высокий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2015-6668

CVSS3: 7.5

nvd

больше 8 лет назад

The Job Manager plugin before 0.7.25 allows remote attackers to read arbitrary CV files via a brute force attack to the WordPress upload directory structure, related to an insecure direct object reference.

EPSS

Процентиль: 99%

0.86142

Высокий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200