Lucene search

[email protected]CVE-2023-32101

HistoryDec 29, 2023 - 10:15 a.m.

CVE-2023-32101

2023-12-2910:15:10

CWE-601

[email protected]

web.nvd.nist.gov

cve

2023

32101

open redirect

pexle

chris library viewer

nvd

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability in Pexle Chris Library Viewer.This issue affects Library Viewer: from n/a through 2.0.6.

Affected configurations

Vulners

NVD

Node

pexle_chrislibrary_viewerRange≤2.0.6

CPENameOperatorVersion
pexlechris:library_viewerpexlechris library viewerlt2.0.6.1

CPE	Name	Operator	Version
pexlechris:library_viewer	pexlechris library viewer	lt	2.0.6.1

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "library-viewer",
    "product": "Library Viewer",
    "vendor": "Pexle Chris",
    "versions": [
      {
        "changes": [
          {
            "at": "2.0.6.1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.0.6",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

References

patchstack.com/database/vulnerability/library-viewer/wordpress-library-viewer-plugin-2-0-6-open-redirection-vulnerability?_s_id=cve

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

6.2 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.1%

JSON

Related for CVE-2023-32101

prion1 cvelist1 nvd1 wordfence1