Font Plugin Schwachstellen

Zeitverlauf

Version

1.2.01
1.2.11
1.2.21
1.2.31
6.1.01

Massnahmen

Official Fix1
Temporary Fix0
Workaround0
Unavailable0
Not Defined3

Ausnutzbarkeit

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined4

Zugriffsart

Not Defined0
Physical0
Local0
Adjacent0
Network4

Authentisierung

Not Defined0
High0
Low1
None3

Benutzeraktivität

Not Defined0
Required3
None1

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤63
≤70
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤51
≤63
≤70
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤53
≤61
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤91
≤100

CNA

≤10
≤20
≤30
≤40
≤51
≤61
≤70
≤80
≤90
≤100

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k2
<2k2
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploit heute

<1k4
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploitmarktvolumen

Affected Versions (19): 1.2, 1.2.1, 1.2.2, 1.2.3, 4.2.5, 6.1, 6.1.1, 6.1.2, 6.1.3, 6.1.4, 6.1.5, 6.1.6, 6.1.7, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5

Softwaretyp: WordPress Plugin

VeröffentlichtBaseTempSchwachstelle0dayHeuteAusMasCTICVE
22.10.20235.85.8Qwerty23 Rocket Font Plugin Cross Site Request Forgery$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2023-46067
15.04.20224.84.8Use Any Font Plugin API Key Cross Site Request Forgery$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-27851
10.10.20165.25.2parsi-font Plugin Reflected Cross Site Scripting$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2016-1000142
16.10.20155.45.2Font Plugin Font.php Directory Traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2015-7683

ZurückÜbersichtWeiter

Do you know our Splunk app?

Download it now for free!