exploitDog

CVE-2022-33901

Опубликовано: 22 июл. 2022

Источник: nvd

CVSS3: 5.3

CVSS3: 7.5

EPSS Средний

Описание

Unauthenticated Arbitrary File Read vulnerability in MultiSafepay plugin for WooCommerce plugin <= 4.13.1 at WordPress.

Ссылки

https://patchstack.com/database/vulnerability/multisafepay/wordpress-multisafepay-plugin-for-woocommerce-plugin-4-13-1-unauthenticated-arbitrary-file-read-vulnerability
Third Party Advisory
https://wordpress.org/plugins/multisafepay/#developers
Release Notes
Third Party Advisory
https://patchstack.com/database/vulnerability/multisafepay/wordpress-multisafepay-plugin-for-woocommerce-plugin-4-13-1-unauthenticated-arbitrary-file-read-vulnerability
Third Party Advisory
https://wordpress.org/plugins/multisafepay/#developers
Release Notes
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:multisafepay:multisafepay_plugin_for_woocommerce:*:*:*:*:*:wordpress:*:*

Версия до 4.15.0 (включая)

EPSS

Процентиль: 93%

0.1031

Средний

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-552

Связанные уязвимости

GHSA-867m-9p4w-343p

CVSS3: 7.5

github

больше 3 лет назад

Unauthenticated Arbitrary File Read vulnerability in MultiSafepay plugin for WooCommerce plugin <= 4.13.1 at WordPress.

EPSS

Процентиль: 93%

0.1031

Средний

5.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-552