CVE-2022-3846 in Workreap Themethông tin

Tóm tắt

Bởi MITRE • 05/12/2022

The Workreap WordPress theme before 2.6.3 has a vulnerability with the notifications feature as it's possible to read any user's notification (employer or freelancer) as the notification ID is brute-forceable.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Đặt trước

03/11/2022

Tiết lộ

05/12/2022

Kiểm duyệt

được chấp nhận

EPSS

0.00783

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!