Lucene search
PatchstackCVE-2024-43259HistoryAug 26, 2024 - 9:15 p.m.
CVE-2024-43259
2024-08-2621:15:26
CWE-200
Patchstack
web.nvd.nist.gov
24
vulnerability
sensitive information
unauthorized actor
jem plugins
order export
woocommerce
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.9
Confidence
High
EPSS
0.001
Percentile
37.8%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in JEM Plugins Order Export for WooCommerce.This issue affects Order Export for WooCommerce: from n/a through 3.23.
Affected configurations
Node
jem-productsorder_export_for_woocommerceRange<3.24wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jem-products | order_export_for_woocommerce | * | cpe:2.3:a:jem-products:order_export_for_woocommerce:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "order-export-and-more-for-woocommerce",
"product": "Order Export for WooCommerce",
"vendor": "JEM Plugins",
"versions": [
{
"changes": [
{
"at": "3.24",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.23",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2024-43259
2024-08-26 21:15:26
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.9
Confidence
High
EPSS
0.001
Percentile
37.8%
Related for CVE-2024-43259