Participants Database Plugin Vulnerabilità

Sequenza temporale

Versione

2.5.01
2.5.11
2.5.21
2.5.31
2.5.41

Contromisure

Official Fix2
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

Sfruttabilità

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined3

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network4

Autenticazione

Not Defined0
High0
Low2
None2

Interazione dell'utente

Not Defined0
Required2
None2

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤62
≤71
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤52
≤61
≤71
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤52
≤60
≤72
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤51
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k1
<2k3
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k3
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (23): 1.7.5, 1.7.5.1, 1.7.5.2, 1.7.5.3, 1.7.5.4, 1.7.5.5, 1.7.5.6, 1.7.5.7, 1.7.5.8, 1.7.5.9, 1.9.5.5, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.5, 2.5.1, 2.5.2, 2.5.3, 2.5.4, 2.5.5

Tipo di software: WordPress Plugin

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
29/11/20235.35.2Participants Database Plugin escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-48751
25/01/20234.34.1Participants Database Plugin cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-47612
11/02/20206.96.9Participants Database Plugin participants-database.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-8596
04/09/20175.24.7Participants Database Plugin cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2017-14126

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!