exploitDog

CVE-2023-7232

Опубликовано: 26 мар. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

The Backup and Restore WordPress WordPress plugin through 1.45 does not protect some log files containing sensitive information such as site configuration etc, allowing unauthenticated users to access such data

Ссылки

https://wpscan.com/vulnerability/323fef8a-aa17-4698-9a02-c12d1d390763/
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/323fef8a-aa17-4698-9a02-c12d1d390763/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wpbackitup:backup_and_restore_wordpress:*:*:*:*:*:wordpress:*:*

Версия до 1.50 (исключая)

EPSS

Процентиль: 54%

0.00314

Низкий

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-qr4g-jhmq-xw23

CVSS3: 5.3

github

почти 2 года назад

The Backup and Restore WordPress WordPress plugin through 1.45 does not protect some log files containing sensitive information such as site configuration etc, allowing unauthenticated users to access such data

EPSS

Процентиль: 54%

0.00314

Низкий

5.3 Medium

CVSS3

Дефекты

NVD-CWE-noinfo