Lucene search
HistoryJan 08, 2024 - 7:15 p.m.
CVE-2023-6383
debug log manager
plugin
directory listing
unauthorized access
sensitive data
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
36.0%
The Debug Log Manager WordPress plugin before 2.3.0 contains a Directory listing vulnerability was discovered, which allows you to download the debug log without authorization and gain access to sensitive data
Affected configurations
Node
bowodebug_log_managerRange<2.3.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bowo | debug_log_manager | * | cpe:2.3:a:bowo:debug_log_manager:*:*:*:*:*:wordpress:*:* |
Related
cve
cve
CVE-2023-6383
2024-01-08 19:15:10
wpvulndb
wpvulndb
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-13 00:00:00
cvelist
cvelist
CVE-2023-6383 Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2024-01-08 19:00:34
prion
prion
Directory traversal
2024-01-08 19:15:00
wpexploit
wpexploit
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-13 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
36.0%
Related for NVD:CVE-2023-6383