exploitDog

CVE-2024-38787

Опубликовано: 13 авг. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Codection Import and export users and customers allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Import and export users and customers: from n/a through 1.26.8.

Ссылки

https://patchstack.com/database/vulnerability/import-users-from-csv-with-meta/wordpress-import-and-export-users-and-customers-plugin-1-26-8-sensitive-information-via-imported-file-vulnerability?_s_id=cve

EPSS

Процентиль: 81%

0.01494

Низкий

7.5 High

CVSS3

Дефекты

CWE-200

Связанные уязвимости

GHSA-j4xj-8c96-39jq

CVSS3: 7.5

github

больше 1 года назад

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Codection Import and export users and customers allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Import and export users and customers: from n/a through 1.26.8.

EPSS

Процентиль: 81%

0.01494

Низкий

7.5 High

CVSS3

Дефекты

CWE-200