exploitDog

GHSA-f6x3-5ffg-hff5

Опубликовано: 22 окт. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The NS Maintenance Mode for WP WordPress plugin through 1.3.1 lacks authorization in its subscriber export function allowing unauthenticated attackers to download a list of a site's subscribers containing their name and email address

The NS Maintenance Mode for WP WordPress plugin through 1.3.1 lacks authorization in its subscriber export function allowing unauthenticated attackers to download a list of a site's subscribers containing their name and email address

Ссылки

EPSS

Процентиль: 18%

0.00059

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-10638

CVSS3: 5.3

nvd

4 месяца назад

The NS Maintenance Mode for WP WordPress plugin through 1.3.1 lacks authorization in its subscriber export function allowing unauthenticated attackers to download a list of a site's subscribers containing their name and email address

EPSS

Процентиль: 18%

0.00059

Низкий

5.3 Medium

CVSS3

CVE ID