PT-2023-27202 · Servmask · Servmask All-In-One Wp Migration Google Drive Extension+1
Rafie Muhammad
·
Publicado
2023-08-30
·
Atualizado
2024-06-22
·
CVE-2023-40004
CVSS v3.1
7.3
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
ServMask All-in-One WP Migration Box Extension versions 1.53 and earlier
ServMask All-in-One WP Migration OneDrive Extension versions 1.66 and earlier
ServMask All-in-One WP Migration Dropbox Extension versions 3.75 and earlier
ServMask All-in-One WP Migration Google Drive Extension versions 2.79 and earlier
Description
The issue is related to a Missing Authorization vulnerability in ServMask All-in-One WP Migration extensions. This vulnerability may allow unauthorized access to certain features or data.
Recommendations
For ServMask All-in-One WP Migration Box Extension versions 1.53 and earlier, update to a version later than 1.53.
For ServMask All-in-One WP Migration OneDrive Extension versions 1.66 and earlier, update to a version later than 1.66.
For ServMask All-in-One WP Migration Dropbox Extension versions 3.75 and earlier, update to a version later than 3.75.
For ServMask All-in-One WP Migration Google Drive Extension versions 2.79 and earlier, update to a version later than 2.79.
Correção
Missing Authorization
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Servmask All-In-One Wp Migration Box Extension
Servmask All-In-One Wp Migration Google Drive Extension