exploitDog

CVE-2025-67470

Опубликовано: 09 дек. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through <= 1.5.5.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/portfolio-and-projects/vulnerability/wordpress-portfolio-and-projects-plugin-1-5-5-sensitive-data-exposure-vulnerability?_s_id=cve

EPSS

Процентиль: 10%

0.00035

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-497

Связанные уязвимости

GHSA-mg95-m74x-55j8

CVSS3: 4.3

github

2 месяца назад

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Essential Plugin Portfolio and Projects portfolio-and-projects allows Retrieve Embedded Sensitive Data.This issue affects Portfolio and Projects: from n/a through <= 1.5.5.

EPSS

Процентиль: 10%

0.00035

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-497