exploitDog

CVE-2019-11633

Опубликовано: 01 мая 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

HoneyPress through 2016-09-27 can be fingerprinted by attackers because of the ingrained unique www.atxsec.com and ayylmao.wpengine.com hostnames within the fake WordPress templates. This allows attackers to discover and avoid this honeypot system.

Ссылки

https://github.com/dustyfresh/HoneyPress/issues/1
Third Party Advisory
https://github.com/dustyfresh/HoneyPress/issues/1
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:honeypress_project:honeypress:*:*:*:*:*:wordpress:*:*

Версия до 2016-09-27 (включая)

EPSS

Процентиль: 51%

0.00285

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-7xj9-27pc-f3vv

CVSS3: 7.5

github

больше 3 лет назад

HoneyPress through 2016-09-27 can be fingerprinted by attackers because of the ingrained unique www.atxsec.com and ayylmao.wpengine.com hostnames within the fake WordPress templates. This allows attackers to discover and avoid this honeypot system.

EPSS

Процентиль: 51%

0.00285

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200