Easy Digital Downloads Vulnerabilità

Sequenza temporale

Versione

3.2.03
3.2.13
3.2.23
3.2.33
3.2.43

Contromisure

Official Fix6
Temporary Fix0
Workaround0
Unavailable0
Not Defined6

Sfruttabilità

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined11

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent1
Network11

Autenticazione

Not Defined0
High3
Low4
None5

Interazione dell'utente

Not Defined0
Required7
None5

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤31
≤41
≤57
≤60
≤70
≤81
≤92
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤42
≤56
≤60
≤70
≤81
≤92
≤100

VulDB

≤10
≤20
≤32
≤42
≤55
≤61
≤70
≤82
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤52
≤61
≤70
≤80
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤53
≤61
≤70
≤80
≤90
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k3
<2k9
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k11
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (26): 2.0, 2.11, 2.11.1, 2.11.2, 2.11.3, 2.11.4, 2.11.5, 3, 3.0.1, 3.1, 3.1.0.1, 3.1.0.2, 3.1.0.3, 3.1.0.4, 3.1.1.4, 3.1.1.4.1, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.2.5, 3.2.6, 3.2.7, 3.2.8, 3.2.9

Tipo di software: WordPress Plugin

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
12/04/20244.34.2Easy Digital Downloads Plugin cross site request forgery$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2024-31293
03/04/20244.34.2Easy Digital Downloads Plugin rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2024-2302
02/02/20244.64.6Easy Digital Downloads Plugin Pricing Options cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2024-0659
02/05/20238.58.4Easy Digital Downloads Plugin autenticazione debole$0-$5k$0-$5kNot DefinedNot Defined0.08CVE-2023-30869
03/02/20234.44.4Easy Digital Downloads Plugin Shortcode cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-0380
14/01/20238.58.4Easy Digital Downloads Plugin sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-23489
21/11/20227.67.5Easy Digital Downloads Plugin escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-3600
07/11/20224.34.2Easy Digital Downloads Plugin Payment History cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2022-2387
22/08/20224.14.0Easy Digital Downloads Plugin escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-33900
18/04/20224.34.1Easy Digital Downloads Plugin cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-0707

2 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 2 results.

PrecedenteVisione D'insiemeIl prossimo

Interested in the pricing of exploits?

See the underground prices here!