exploitDog

GHSA-vgwh-wgr7-x75h

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The wp-db-backup plugin 2.2.4 for WordPress relies on a five-character string for access control, which makes it easier for remote attackers to read backup archives via a brute-force attack.

The wp-db-backup plugin 2.2.4 for WordPress relies on a five-character string for access control, which makes it easier for remote attackers to read backup archives via a brute-force attack.

Ссылки

EPSS

Процентиль: 68%

0.00571

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-10076

CVSS3: 7.5

nvd

больше 7 лет назад

The wp-db-backup plugin 2.2.4 for WordPress relies on a five-character string for access control, which makes it easier for remote attackers to read backup archives via a brute-force attack.

EPSS

Процентиль: 68%

0.00571

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-200