exploitDog

CVE-2023-6444

Опубликовано: 11 мар. 2024

Источник: nvd

CVSS3: 5.3

EPSS Средний

Описание

The Seriously Simple Podcasting WordPress plugin before 3.0.0 discloses the Podcast owner's email address (which by default is the admin email address) via an unauthenticated crafted request.

Ссылки

https://wpscan.com/vulnerability/061c59d6-f4a0-4cd1-b945-5e92b9c2b4aa/
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/061c59d6-f4a0-4cd1-b945-5e92b9c2b4aa/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:castos:seriously_simple_podcasting:*:*:*:*:*:wordpress:*:*

Версия до 3.0.0 (исключая)

EPSS

Процентиль: 99%

0.69261

Средний

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qhfg-qx72-6jw4

CVSS3: 5.3

github

почти 2 года назад

The Seriously Simple Podcasting WordPress plugin before 3.0.0 discloses the Podcast owner's email address (which by default is the admin email address) via an unauthenticated crafted request.

EPSS

Процентиль: 99%

0.69261

Средний

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo