Описание
The Tainacan plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.0 via uploaded files marked as private being exposed in wp-content without adequate protection. This makes it possible for unauthenticated attackers to extract potentially sensitive information from files that have been marked as private.
EPSS
Процентиль: 17%
0.00053
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-552
Связанные уязвимости
CVSS3: 5.3
github
3 месяца назад
The Tainacan plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.0.0 via uploaded files marked as private being exposed in wp-content without adequate protection. This makes it possible for unauthenticated attackers to extract potentially sensitive information from files that have been marked as private.
EPSS
Процентиль: 17%
0.00053
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-552