Lucene search
WPScanCVELIST:CVE-2022-2834HistoryOct 17, 2022 - 12:00 a.m.
CVE-2022-2834 Helpful < 4.5.26 - Information Disclosure
2022-10-1700:00:00
WPScan
www.cve.org
wordpress plugin
information disclosure
publicly accessible location
sensitive information
ip address
email address
0.001 Low
EPSS
Percentile
40.2%
The Helpful WordPress plugin before 4.5.26 puts the exported logs and feedbacks in a publicly accessible location and guessable names, which could allow attackers to download them and retrieve sensitive information such as IP, Names and Email Address depending on the plugin’s settings
CNA Affected
[
{
"vendor": "Unknown",
"product": "Helpful",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "4.5.26"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
osv
osv
CVE-2022-2834
2022-10-17 12:15:09
wpvulndb
wpvulndb
Helpful < 4.5.26 - Information Disclosure
2022-09-26 00:00:00
patchstack
patchstack
WordPress Helpful plugin <= 4.5.25 - Information Disclosure vulnerability
2022-09-26 00:00:00
cve
cve
CVE-2022-2834
2022-10-17 12:15:09
wpexploit
wpexploit
Helpful < 4.5.26 - Information Disclosure
2022-09-26 00:00:00
prion
prion
Information disclosure
2022-10-17 12:15:00
nvd
nvd
CVE-2022-2834
2022-10-17 12:15:09