Lucene search
HistoryApr 10, 2024 - 4:15 p.m.
CVE-2024-31302
vulnerability
codepeople
contact form email
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
17.0%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in CodePeople Contact Form Email.This issue affects Contact Form Email: from n/a through 1.3.44.
Affected configurations
Node
codepeoplecontact_form_emailRange<1.3.44wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| codepeople | contact_form_email | * | cpe:2.3:a:codepeople:contact_form_email:*:*:*:*:*:wordpress:*:* |
Related
vulnrichment
vulnrichment
cvelist
cvelist
wpvulndb
wpvulndb
Contact Form Email < 1.3.45 - Unauthenticated Sensitive Information Exposure
2024-04-11 00:00:00
cve
cve
CVE-2024-31302
2024-04-10 16:15:14
wordfence
wordfence
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.001
Percentile
17.0%
Related for NVD:CVE-2024-31302