Lucene search
PatchstackCVE-2023-51688HistoryDec 29, 2023 - 3:15 p.m.
CVE-2023-51688
2023-12-2915:15:10
CWE-200
Patchstack
web.nvd.nist.gov
54
cve-2023-51688
vulnerability
sensitive information
unauthorized actor
implecode
ecommerce
product catalog
wordpress
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
37.2%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in impleCode eCommerce Product Catalog Plugin for WordPress.This issue affects eCommerce Product Catalog Plugin for WordPress: from n/a through 3.3.26.
Affected configurations
Node
implecodeecommerce_product_catalogRange<3.3.27wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| implecode | ecommerce_product_catalog | * | cpe:2.3:a:implecode:ecommerce_product_catalog:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "ecommerce-product-catalog",
"product": "eCommerce Product Catalog Plugin for WordPress",
"vendor": "impleCode",
"versions": [
{
"changes": [
{
"at": "3.3.27",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.3.26",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
prion
prion
Code injection
2023-12-29 15:15:00
wpvulndb
wpvulndb
nvd
nvd
CVE-2023-51688
2023-12-29 15:15:10
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
37.2%
Related for CVE-2023-51688