exploitDog

CVE-2024-38747

Опубликовано: 13 авг. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HitPay Payment Solutions Pte Ltd HitPay Payment Gateway for WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects HitPay Payment Gateway for WooCommerce: from n/a through 4.1.3.

Ссылки

https://patchstack.com/database/vulnerability/hitpay-payment-gateway/wordpress-hitpay-payment-gateway-for-woocommerce-plugin-4-1-3-sensitive-data-exposure-via-log-file-vulnerability?_s_id=cve

EPSS

Процентиль: 75%

0.00915

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-qc7c-w5wc-8wrh

CVSS3: 7.5

github

больше 1 года назад

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HitPay Payment Solutions Pte Ltd HitPay Payment Gateway for WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects HitPay Payment Gateway for WooCommerce: from n/a through 4.1.3.

EPSS

Процентиль: 75%

0.00915

Низкий

7.5 High

CVSS3

Дефекты

CWE-200