mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
81 lines
2.0 KiB
JSON
81 lines
2.0 KiB
JSON
{
|
||
"CVE_data_meta": {
|
||
"ID": "CVE-2022-2552",
|
||
"ASSIGNER": "contact@wpscan.com",
|
||
"STATE": "PUBLIC",
|
||
"TITLE": "Duplicator < 1.4.7.1 - Unauthenticated System Information Disclosure"
|
||
},
|
||
"data_format": "MITRE",
|
||
"data_type": "CVE",
|
||
"data_version": "4.0",
|
||
"generator": "WPScan CVE Generator",
|
||
"affects": {
|
||
"vendor": {
|
||
"vendor_data": [
|
||
{
|
||
"vendor_name": "Unknown",
|
||
"product": {
|
||
"product_data": [
|
||
{
|
||
"product_name": "Duplicator – WordPress Migration Plugin",
|
||
"version": {
|
||
"version_data": [
|
||
{
|
||
"version_affected": "<",
|
||
"version_name": "1.4.7.1",
|
||
"version_value": "1.4.7.1"
|
||
}
|
||
]
|
||
}
|
||
}
|
||
]
|
||
}
|
||
}
|
||
]
|
||
}
|
||
},
|
||
"description": {
|
||
"description_data": [
|
||
{
|
||
"lang": "eng",
|
||
"value": "The Duplicator WordPress plugin before 1.4.7.1 does not authenticate or authorize visitors before displaying information about the system such as server software, php version and full file system path to the site."
|
||
}
|
||
]
|
||
},
|
||
"references": {
|
||
"reference_data": [
|
||
{
|
||
"refsource": "MISC",
|
||
"url": "https://wpscan.com/vulnerability/6b540712-fda5-4be6-ae4b-bd30a9d9d698",
|
||
"name": "https://wpscan.com/vulnerability/6b540712-fda5-4be6-ae4b-bd30a9d9d698"
|
||
},
|
||
{
|
||
"refsource": "MISC",
|
||
"url": "https://github.com/SecuriTrust/CVEsLab/tree/main/CVE-2022-2552",
|
||
"name": "https://github.com/SecuriTrust/CVEsLab/tree/main/CVE-2022-2552"
|
||
}
|
||
]
|
||
},
|
||
"problemtype": {
|
||
"problemtype_data": [
|
||
{
|
||
"description": [
|
||
{
|
||
"value": "CWE-287 Improper Authentication",
|
||
"lang": "eng"
|
||
}
|
||
]
|
||
}
|
||
]
|
||
},
|
||
"credit": [
|
||
{
|
||
"lang": "eng",
|
||
"value": "Ihsan Sencan"
|
||
}
|
||
],
|
||
"source": {
|
||
"discovery": "EXTERNAL"
|
||
}
|
||
}
|