exploitDog

GHSA-p632-5p4v-9hh3

Опубликовано: 08 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email addresses

The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email addresses

Ссылки

EPSS

Процентиль: 51%

0.00277

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-532

Связанные уязвимости

CVE-2021-25009

CVSS3: 5.3

nvd

почти 4 года назад

The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email addresses

EPSS

Процентиль: 51%

0.00277

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-200

CWE-532