CVE-2023-52230

Опубликовано: 09 июн. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Missing Authorization vulnerability in Pluggabl LLC Booster Plus for WooCommerce.This issue affects Booster Plus for WooCommerce: from n/a before 7.1.3.

Ссылки

https://patchstack.com/database/vulnerability/booster-plus-for-woocommerce/wordpress-booster-plus-for-woocommerce-plugin-7-1-3-authenticated-arbitrary-wordpress-option-disclosure-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/booster-plus-for-woocommerce/wordpress-booster-plus-for-woocommerce-plugin-7-1-3-authenticated-arbitrary-wordpress-option-disclosure-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:plus:wordpress:*:*

Версия до 7.1.3 (включая)

EPSS

Процентиль: 59%

0.00385

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-7rxg-g96w-25cm