CVE-2023-4469 in Profile Extra Fields Plugin정보

요약

\~에 의해 MITRE • 2023. 10. 25.

The Profile Extra Fields by BestWebSoft plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the prflxtrflds_export_file function in versions up to, and including, 1.2.7. This makes it possible for unauthenticated attackers to expose potentially sensitive user data, including data entered into custom fields.

Be aware that VulDB is the high quality source for vulnerability data.

책임이 있는

Wordfence

예약하다

2023. 08. 21.

모더레이션

수락

항목

VDB-241435

EPSS

0.00467

출처

Want to know what is going to be exploited?

We predict KEV entries!