PT-2023-30760 · WordPress · Jobwp
Myungju Kim
·
Publicado
2023-12-21
·
Atualizado
2023-12-29
·
CVE-2023-48288
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
WordPress Job Board and Recruitment Plugin – JobWP versions n/a through 2.1
Description
The issue is related to the exposure of sensitive information to an unauthorized actor. This is a problem where sensitive data is made available to individuals who should not have access to it.
Recommendations
For versions n/a through 2.1, update to a version later than 2.1 to resolve the issue.
At the moment, there is no information about other mitigation measures for this specific issue.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Jobwp