Lucene search
HistoryApr 07, 2024 - 6:15 p.m.
CVE-2024-31308
cve-2024-31308
untrusted data
vjinfotech
wp import export lite
nvd
4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
9.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26.
Affected configurations
Node
vjinfotechwp_import_export_liteRange≤3.9.26
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vjinfotech | wp_import_export_lite | * | cpe:2.3:a:vjinfotech:wp_import_export_lite:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-import-export-lite",
"product": "WP Import Export Lite",
"vendor": "VJInfotech",
"versions": [
{
"changes": [
{
"at": "3.9.27",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.9.26",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]
4.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
9.3 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-31308