exploitDog

CVE-2018-13060

Опубликовано: 16 мар. 2020

Источник: nvd

CVSS3: 6.5

CVSS2: 5

EPSS Низкий

Описание

Easy!Appointments 1.3.0 has a Guessable CAPTCHA issue.

Ссылки

https://sysdream.com/news/lab/
Third Party Advisory
https://sysdream.com/news/lab/2019-10-25-cve-2018-13060-easy-appointments-captcha-bypass/
Third Party Advisory
https://sysdream.com/news/lab/
Third Party Advisory
https://sysdream.com/news/lab/2019-10-25-cve-2018-13060-easy-appointments-captcha-bypass/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:easyappointments:easy\!appointments:*:*:*:*:*:wordpress:*:*

Версия до 1.2.1 (исключая)

cpe:2.3:a:easyappointments:easy\!appointments:1.3.0:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 54%

0.00315

Низкий

6.5 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-366j-ph5m-8wm7

github

больше 3 лет назад

Easy!Appointments 1.3.0 has a Guessable CAPTCHA issue.

EPSS

Процентиль: 54%

0.00315

Низкий

6.5 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-287