Lucene search
China National Vulnerability DatabaseCNVD-2023-04629HistoryMar 09, 2022 - 12:00 a.m.
WordPress CorreosExpress plugin information leakage vulnerability
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
wordpress
correosexpress
plugin
information
disclosure
vulnerability
php
mysql
servers
attackers
log files
sensitive information
exploitation
EPSS
0.001
Percentile
40.2%
WordPress is the Wordpress Foundation’s set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress plugin is a WordPress open source application plugin. WordPress CorreosExpress plugin 2.6.0 and previous versions have an information disclosure vulnerability that can be exploited by attackers to generate publicly accessible The vulnerability can be exploited to generate publicly accessible log files that contain sensitive information.
Related
nvd
nvd
CVE-2021-25009
2022-03-07 09:15:08
wpvulndb
wpvulndb
CorreosExpress <= 2.6.0 - Sensitive Information Disclosure
2021-11-29 00:00:00
cve
cve
CVE-2021-25009
2022-03-07 09:15:08
patchstack
patchstack
cvelist
cvelist
CVE-2021-25009 CorreosExpress <= 2.6.0 - Sensitive Information Disclosure
2022-03-07 08:16:13
wpexploit
wpexploit
CorreosExpress <= 2.6.0 - Sensitive Information Disclosure
2021-11-29 00:00:00
prion
prion
Design/Logic Flaw
2022-03-07 09:15:00