CVE-2023-6447 in EventPrime Pluginالمعلومات

الملخص

بحسب MITRE • 22/01/2024

The EventPrime WordPress plugin before 3.3.6 lacks authentication and authorization, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id/event name.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

30/11/2023

إفشاء

22/01/2024

الاعتدال

تمت الموافقة

إدخال

VDB-251723

EPSS

0.00564

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Do you know our Splunk app?

Download it now for free!