exploitDog

GHSA-xcfp-c436-mm2r

Опубликовано: 16 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.6

Описание

The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.

The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.

Ссылки

EPSS

Процентиль: 69%

0.00607

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-552

Связанные уязвимости

CVE-2024-13126

CVSS3: 4.6

nvd

11 месяцев назад

The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.

EPSS

Процентиль: 69%

0.00607

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-552