Lucene search

K
prionPRIOn knowledge basePRION:CVE-2023-4269
HistorySep 04, 2023 - 12:15 p.m.

Code injection

2023-09-0412:15:00
PRIOn knowledge base
www.prio-n.com
7
injection
wordpress
authorization
pii
email addresses
vulnerability

4.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.0%

The User Activity Log WordPress plugin before 1.6.6 lacks proper authorisation when exporting its activity logs, allowing any authenticated users, such as subscriber to perform such action and retrieve PII such as email addresses.

CPENameOperatorVersion
user_activity_loglt1.6.6

4.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

14.0%

Related for PRION:CVE-2023-4269