Lucene search

[email protected]NVD:CVE-2022-2558

HistoryAug 22, 2022 - 3:15 p.m.

CVE-2022-2558

2022-08-2215:15:15

CWE-200

[email protected]

web.nvd.nist.gov

simple job board

wordpress

directory listing

vulnerability

uploaded resumes

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

40.2%

JSON

The Simple Job Board WordPress plugin before 2.10.0 is susceptible to Directory Listing which allows the public listing of uploaded resumes in certain configurations.

Affected configurations

Nvd

Node

presstigerssimple_job_boardRange<2.10.0wordpress

VendorProductVersionCPE
presstigerssimple_job_board*cpe:2.3:a:presstigers:simple_job_board:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
presstigers	simple_job_board	*	cpe:2.3:a:presstigers:simple_job_board::::::wordpress::*

References

wpscan.com/vulnerability/6e096269-eedc-4614-88ce-6795c4adf32f

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.001

Percentile

40.2%

JSON

Related for NVD:CVE-2022-2558

prion1 cve1 patchstack1 cvelist1 wpvulndb1 wpexploit1