Описание
The ApplyOnline WordPress plugin before 2.6.3 does not protect uploaded files during the application process, allowing unauthenticated users to access them and any private information they contain
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.3 (исключая)
cpe:2.3:a:spiderteams:applyonline_-_application_form_builder_and_manager:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 30%
0.00111
Низкий
2.7 Low
CVSS3
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 2.7
github
9 месяцев назад
The ApplyOnline WordPress plugin before 2.6.3 does not protect uploaded files during the application process, allowing unauthenticated users to access them and any private information they contain
EPSS
Процентиль: 30%
0.00111
Низкий
2.7 Low
CVSS3
Дефекты
NVD-CWE-noinfo