exploitDog

CVE-2023-6496

Опубликовано: 11 янв. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

The Manage Notification E-mails plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.8.5 via the card_famne_export_settings function. This makes it possible for unauthenticated attackers to obtain plugin settings.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:freeamigos:manage_notification_e-mails:*:*:*:*:*:wordpress:*:*

Версия до 1.8.6 (исключая)

EPSS

Процентиль: 56%

0.00332

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-w9w8-m92g-fr8f

CVSS3: 5.3

github

около 2 лет назад

The Manage Notification E-mails plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.8.5 via the card_famne_export_settings function. This makes it possible for unauthenticated attackers to obtain plugin settings.

EPSS

Процентиль: 56%

0.00332

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-862