Lucene search
HistoryDec 18, 2023 - 8:15 p.m.
CVE-2023-6203
cve-2023-6203
nvd
wordpress
plugin
security vulnerability
password protection
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
54.8%
The Events Calendar WordPress plugin before 6.2.8.1 discloses the content of password protected posts to unauthenticated users via a crafted request
Affected configurations
Node
coolpluginsevents_search_for_the_events_calendarRange<6.2.8.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| coolplugins | events_search_for_the_events_calendar | * | cpe:2.3:a:coolplugins:events_search_for_the_events_calendar:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "The Events Calendar",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "6.2.8.1"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
prion
prion
Cross site request forgery (csrf)
2023-12-18 20:15:00
nvd
nvd
CVE-2023-6203
2023-12-18 20:15:08
openvas
openvas
cvelist
cvelist
wpexploit
wpexploit
wpvulndb
wpvulndb
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.002 Low
EPSS
Percentile
54.8%
Related for CVE-2023-6203