← volver
CVE-2023-6447

EventPrime < 3.3.6 - Unauthenticated Event Access

CVSS 5.3 MEDIUMEPSS 0.6%
The EventPrime WordPress plugin before 3.3.6 lacks authentication and authorization, allowing unauthenticated visitors to access private and password protected Events by guessing their numeric id/event name.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Productos afectados
Unknown · EventPrime

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/e366881c-d21e-4063-a945-95e6b080a373/