Lucene search
HistoryDec 21, 2023 - 2:15 p.m.
CVE-2023-49162
cve-2023-49162
vulnerability
bigcommerce
wordpress
information security
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.3%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in BigCommerce BigCommerce For WordPress.This issue affects BigCommerce For WordPress: from n/a through 5.0.6.
Affected configurations
Node
bigcommercebigcommerceRange≤5.0.6
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bigcommerce | bigcommerce | * | cpe:2.3:a:bigcommerce:bigcommerce:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "bigcommerce",
"product": "BigCommerce For WordPress",
"vendor": "BigCommerce",
"versions": [
{
"lessThanOrEqual": "5.0.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Code injection
2023-12-21 14:15:00
cvelist
cvelist
nvd
nvd
CVE-2023-49162
2023-12-21 14:15:08
wpvulndb
wpvulndb
BigCommerce <= 5.0.7 - Unauthenticated Sensitive Information Exposure
2023-12-08 00:00:00
wordfence
wordfence
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
7.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
37.3%
Related for CVE-2023-49162