Lucene search

CVE-2022-44587

🗓️ 21 Jun 2024 16:10:15Reported by PatchstackType

Insertion of Sensitive Information into Log File vulnerability in WP 2FA allows Accessing Functionality Not Properly Constrained by ACL

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2022-44587	21 Jun 202416:15	–	nvd
Vulnrichment	CVE-2022-44587 WordPress WP 2FA plugin <= 2.6.3 - Sensitive Data Exposure via Log File vulnerability	21 Jun 202415:54	–	vulnrichment
Patchstack	WordPress WP 2FA Plugin <= 2.6.3 is vulnerable to Sensitive Data Exposure	20 Jun 202400:00	–	patchstack
Cvelist	CVE-2022-44587 WordPress WP 2FA plugin <= 2.6.3 - Sensitive Data Exposure via Log File vulnerability	21 Jun 202415:54	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 17, 2024 to June 23, 2024)	27 Jun 202415:00	–	wordfence

Nvd

Vulners

Vulnrichment

Node

melapress wp_2faRange<2.6.4wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "wp-2fa",
    "product": "WP 2FA",
    "versions": [
      {
        "changes": [
          {
            "at": "2.6.4",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.6.3",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/wp-2fa/wordpress-wp-2fa-plugin-2-6-3-sensitive-data-exposure-via-log-file-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Jun 2024 16:15Current

6.4Medium risk

Vulners AI Score6.4

CVSS35.3 - 7.5

EPSS0.00307

SSVC

CWE-532