exploitDog

CVE-2024-38742

Опубликовано: 13 авг. 2024

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2.

Ссылки

https://patchstack.com/database/vulnerability/mail-boxes-etc/wordpress-mbe-eship-plugin-2-1-2-sensitive-data-exposure-vulnerability?_s_id=cve

EPSS

Процентиль: 62%

0.00422

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-vc9g-8jrm-c9w6

CVSS3: 5.3

github

больше 1 года назад

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2.

EPSS

Процентиль: 62%

0.00422

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-200