exploitDog

GHSA-vxgf-mfh8-2484

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.

The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.

Ссылки

EPSS

Процентиль: 48%

0.00249

Низкий

5.3 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2016-10929

CVSS3: 5.3

nvd

больше 6 лет назад

The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.

EPSS

Процентиль: 48%

0.00249

Низкий

5.3 Medium

CVSS3

CVE ID