mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-30 18:21:17 +00:00
55 lines
1.7 KiB
JSON
55 lines
1.7 KiB
JSON
|
{
|
||
|
|
"id": "CVE-2023-40204",
|
||
|
|
"sourceIdentifier": "audit@patchstack.com",
|
||
|
|
"published": "2023-12-20T19:15:09.923",
|
||
|
|
"lastModified": "2023-12-20T19:52:34.443",
|
||
|
|
"vulnStatus": "Awaiting Analysis",
|
||
|
|
"descriptions": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "Unrestricted Upload of File with Dangerous Type vulnerability in Premio Folders \u2013 Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager.This issue affects Folders \u2013 Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager: from n/a through 2.9.2.\n\n"
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"metrics": {
|
||
|
|
"cvssMetricV31": [
|
||
|
|
{
|
||
|
|
"source": "audit@patchstack.com",
|
||
|
|
"type": "Secondary",
|
||
|
|
"cvssData": {
|
||
|
|
"version": "3.1",
|
||
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
|
||
|
|
"attackVector": "NETWORK",
|
||
|
|
"attackComplexity": "LOW",
|
||
|
|
"privilegesRequired": "HIGH",
|
||
|
|
"userInteraction": "NONE",
|
||
|
|
"scope": "CHANGED",
|
||
|
|
"confidentialityImpact": "HIGH",
|
||
|
|
"integrityImpact": "HIGH",
|
||
|
|
"availabilityImpact": "HIGH",
|
||
|
|
"baseScore": 9.1,
|
||
|
|
"baseSeverity": "CRITICAL"
|
||
|
|
},
|
||
|
|
"exploitabilityScore": 2.3,
|
||
|
|
"impactScore": 6.0
|
||
|
|
}
|
||
|
|
]
|
||
|
|
},
|
||
|
|
"weaknesses": [
|
||
|
|
{
|
||
|
|
"source": "audit@patchstack.com",
|
||
|
|
"type": "Primary",
|
||
|
|
"description": [
|
||
|
|
{
|
||
|
|
"lang": "en",
|
||
|
|
"value": "CWE-434"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|
||
|
|
],
|
||
|
|
"references": [
|
||
|
|
{
|
||
|
|
"url": "https://patchstack.com/database/vulnerability/folders/wordpress-folders-plugin-2-9-2-arbitrary-file-upload-vulnerability?_s_id=cve",
|
||
|
|
"source": "audit@patchstack.com"
|
||
|
|
}
|
||
|
|
]
|
||
|
|
}
|