Wpgraphql Plugin 漏洞

时间轴

版本

0.2.32
1.14.01
1.14.11
1.14.21
1.14.31

修正

Official Fix3
Temporary Fix0
Workaround0
Unavailable0
Not Defined1

易受攻击性

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined4

访问向量

Not Defined0
Physical0
Local0
Adjacent0
Network4

身份验证

Not Defined0
High0
Low2
None2

用户交互

Not Defined0
Required0
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤60
≤71
≤81
≤91
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤51
≤60
≤72
≤80
≤91
≤100

VulDB

≤10
≤20
≤30
≤40
≤51
≤61
≤71
≤81
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k3
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

本日攻击

<1k3
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

🔴 CTI 活动

Affected Versions (12): 0.2.3, 0.3, 0.3.1, 0.3.2, 0.3.3, 0.3.4, 1.14, 1.14.1, 1.14.2, 1.14.3, 1.14.4, 1.14.5

软件类型: WordPress Plugin

已发布BaseTemp漏洞0day今天修正CTICVE
2023-07-016.36.1WPGraphQL Plugin 权限升级$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-23684
2022-05-094.34.1WPGraphQL Plugin GraphQL Query 权限升级$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-25060
2019-06-107.27.0WPGraphQL Plugin Query 弱身份验证$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-9880
2019-06-108.58.3WPGraphQL Plugin User Registration 弱身份验证$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-9879

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!