CVE-2023-52234

Опубликовано: 28 мар. 2024

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Booster Booster Elite for WooCommerce.This issue affects Booster Elite for WooCommerce: from n/a before 7.1.2.

Ссылки

https://patchstack.com/database/vulnerability/booster-elite-for-woocommerce/wordpress-booster-elite-for-woocommerce-plugin-7-1-2-authenticated-arbitrary-order-information-disclosure-vulnerability?_s_id=cve
Third Party Advisory
https://patchstack.com/database/vulnerability/booster-elite-for-woocommerce/wordpress-booster-elite-for-woocommerce-plugin-7-1-2-authenticated-arbitrary-order-information-disclosure-vulnerability?_s_id=cve
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:elite:wordpress:*:*

Версия до 7.1.2 (исключая)

EPSS

Процентиль: 68%

0.00577

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

GHSA-69fm-ffh7-6h57