Lucene search

WpvulndbWPVDB-ID:4F349083-68A1-4F4C-BBEA-9E605B85C314

HistoryMay 07, 2024 - 12:00 a.m.

Media Cleaner: Clean your WordPress! < 6.7.3 - Unauthenticated Information Exposure

2024-05-0700:00:00

wpscan.com

wordpress

media cleaner

vulnerable .

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

Percentile

9.0%

JSON

Description The Media Cleaner: Clean your WordPress! plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.7.2 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information contained in the exposed log files.

References

www.wordfence.com/threat-intel/vulnerabilities/id/8a8ee823-74f2-4cab-99a1-f2f613929b44

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

6.4

Confidence

Low

EPSS

Percentile

9.0%

JSON

Related for WPVDB-ID:4F349083-68A1-4F4C-BBEA-9E605B85C314