Описание
The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.1.2 via the 'file_url' parameter. This makes it possible for unauthenticated attackers to view potentially sensitive information and download a digital product without paying for it.
Ссылки
EPSS
Процентиль: 45%
0.0023
Низкий
8.2 High
CVSS3
Дефекты
CWE-201
Связанные уязвимости
CVSS3: 8.2
github
10 месяцев назад
The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.1.2 via the 'file_url' parameter. This makes it possible for unauthenticated attackers to view potentially sensitive information and download a digital product without paying for it.
EPSS
Процентиль: 45%
0.0023
Низкий
8.2 High
CVSS3
Дефекты
CWE-201