Lucene search

K
cve[email protected]CVE-2023-48288
HistoryDec 21, 2023 - 2:15 p.m.

CVE-2023-48288

2023-12-2114:15:08
CWE-200
web.nvd.nist.gov
60
cve-2023-48288
vulnerability
hm plugin
wordpress
job board
recruitment plugin
jobwp
nvd
sensitive information

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

37.2%

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in HM Plugin WordPress Job Board and Recruitment Plugin – JobWP.This issue affects WordPress Job Board and Recruitment Plugin – JobWP: from n/a through 2.1.

Affected configurations

Vulners
NVD
Node
hm_pluginwordpress_job_board_and_recruitment_plugin_–_jobwpRange2.1
CPENameOperatorVersion
hmplugin:jobwphmplugin jobwplt2.2

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "jobwp",
    "product": "WordPress Job Board and Recruitment Plugin – JobWP",
    "vendor": "HM Plugin",
    "versions": [
      {
        "changes": [
          {
            "at": "2.2",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.1",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

0.001 Low

EPSS

Percentile

37.2%

Related for CVE-2023-48288