exploitDog

CVE-2023-31073

Опубликовано: 09 дек. 2024

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Missing Authorization vulnerability in Jose Vega Display custom fields in the frontend – Post and User Profile Fields allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display custom fields in the frontend – Post and User Profile Fields: from n/a through 1.2.0.

Ссылки

https://patchstack.com/database/wordpress/plugin/shortcode-to-display-post-and-user-data/vulnerability/wordpress-shortcode-to-display-post-and-user-data-plugin-1-2-0-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 43%

0.00207

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-6f3q-67gr-5v5r

CVSS3: 4.3

github

около 1 года назад

Missing Authorization vulnerability in Jose Vega Display custom fields in the frontend – Post and User Profile Fields allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Display custom fields in the frontend – Post and User Profile Fields: from n/a through 1.2.0.

EPSS

Процентиль: 43%

0.00207

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-862