Lucene search
HistoryJan 08, 2024 - 7:15 p.m.
CVE-2023-6383
cve-2023-6383
debug log manager
wordpress plugin
directory listing vulnerability
nvd
security
authorization
sensitive data
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
36.0%
The Debug Log Manager WordPress plugin before 2.3.0 contains a Directory listing vulnerability was discovered, which allows you to download the debug log without authorization and gain access to sensitive data
Affected configurations
Node
solarwindslog_\&_event_managerRange<2.3.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| solarwinds | log_\&_event_manager | * | cpe:2.3:a:solarwinds:log_\&_event_manager:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "Debug Log Manager",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "2.3.0"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
nvd
nvd
CVE-2023-6383
2024-01-08 19:15:10
wpexploit
wpexploit
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-13 00:00:00
prion
prion
Directory traversal
2024-01-08 19:15:00
wpvulndb
wpvulndb
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-13 00:00:00
cvelist
cvelist
CVE-2023-6383 Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2024-01-08 19:00:34
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
36.0%
Related for CVE-2023-6383