exploitDog

GHSA-88wc-fvvx-mpxr

Опубликовано: 05 дек. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as wp-config.php

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as wp-config.php

Ссылки

EPSS

Процентиль: 60%

0.00401

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2023-5105

CVSS3: 6.5

nvd

около 2 лет назад

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as `wp-config.php`

EPSS

Процентиль: 60%

0.00401

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-22