CVE-2023-2487

Published: Dic 21, 2023 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2023-33971 Aliases: GSD-2023-2487
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 5,9
Source: [email protected]
Attack Vector: network
Attack Complexity: high
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none

Description

AI Translation Available

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Smackcoders Export All Posts, Products, Orders, Refunds & Users.This issue affects Export All Posts, Products, Orders, Refunds & Users: from n/a through 2.4.1.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0062
Percentile
0,7th
Updated

EPSS Score Trend (Last 90 Days)

200

Exposure of Sensitive Information to an Unauthorized Actor

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality
Potential Impacts:
Read Application Data
Applicable Platforms
Technologies: Mobile, Not Technology-Specific, Web Based
Likelihood of Exploit: High
View CWE Details
Application

Export All Posts\, Products\, Orders\, Refunds \& Users by Smackcoders

Product Information
Vendor Smackcoders
Product Export All Posts\, Products\, Orders\, Refunds \& Users
Version Range Affected
To 2.4.1 (inclusive)
cpe:2.3:a:smackcoders:export_all_posts\,_products\,_orders\,_refunds_\&_users:*:*:*:*:*:wordpress:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://patchstack.com/database/vulnerability/wp-ultimate-e…
Third Party Advisory
https://patchstack.com/database/vulnerability/wp-ultimate-exporter/wordpress-ex…
https://patchstack.com/database/vulnerability/wp-ultimate-e…
Third Party Advisory
https://patchstack.com/database/vulnerability/wp-ultimate-exporter/wordpress-ex…