Lucene search
PatchstackCVELIST:CVE-2024-1436HistoryFeb 26, 2024 - 3:55 p.m.
CVE-2024-1436 WordPress WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit Plugin <= 1.0.9 is vulnerable to Sensitive Data Exposure
2024-02-2615:55:27
CWE-200
Patchstack
www.cve.org
3
cve-2024-1436
sensitive data exposure
unauthorized actor
wiloke woocommerce coupon popup
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0
Percentile
9.0%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wiloke WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit.This issue affects WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit: from n/a through 1.0.9.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "myshopkit-popup-smartbar-slidein",
"product": "WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit",
"vendor": "Wiloke",
"versions": [
{
"lessThanOrEqual": "1.0.9",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2024-1436
2024-02-26 16:27:52
prion
prion
Code injection
2024-02-26 16:27:00
nvd
nvd
CVE-2024-1436
2024-02-26 16:27:52
wpvulndb
wpvulndb
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2024-1436