Lucene search
K

8 matches found

Nuclei
Nuclei
added 5 hours ago52 views

WP Attachment Export < 0.2.4 - Unrestricted File Download

The plugin does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a Wordpress powered site. This includes details of even privately published posts and password protected posts with their passwords revealed ...

7.5CVSS7.1AI score0.08185EPSS
Exploits1References5
Cvelist
Cvelist
added 2021/11/01 8:45 a.m.16 views

CVE-2015-20067 WP Attachment Export < 0.2.4 - Unauthenticated Posts Download

The WP Attachment Export WordPress plugin before 0.2.4 does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a Wordpress...

7.5AI score0.08185EPSS
Exploits1References3
CVE
CVE
added 2021/11/01 8:45 a.m.54 views

CVE-2015-20067

CVE-2015-20067 affects the WordPress WP Attachment Export plugin prior to v0.2.4. The vulnerability arises from improper access controls that allow unauthenticated users to download an XML data set containing details of attachments and posts (and, in some disclosures, plaintext passwords for pass...

7.5CVSS7.5AI score0.08185EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2021/11/01 12:0 a.m.4 views

WordPress 安全漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WordPress plugin WP Attachment Export prior to version 0.2.4...

7.5CVSS7.3AI score0.08185EPSS
Exploits1References4
Patchstack
Patchstack
added 2015/08/15 12:0 a.m.13 views

WordPress WP Attachment Export plugin <= 0.2.3 - Unauthenticated Posts Download vulnerability

Unauthenticated Posts Download vulnerability discovered by Nitin Venkatesh in WordPress WP Attachment Export plugin versions = 0.2.3. Solution Update the WordPress WP Attachment Export plugin to the latest available version at least 0.2.4...

3AI score0.08185EPSS
Exploits1References3Affected Software1
0day.today
0day.today
added 2015/07/17 12:0 a.m.27 views

WordPress WP Attachment Export 0.2.3 Arbitrary File Download Vulnerability

Exploit for php platform in category web applications Title: Arbitrary File Download in WP Attachment Export Wordpress Plugin v0.2.3 Submitter: Nitin Venkatesh Product: WP Attachment Export Wordpress Plugin Product URL: https://wordpress.org/plugins/wp-attachment-export/ Vulnerability Type:...

7.1AI score
Exploits0
WPVulnDB
WPVulnDB
added 2015/07/15 12:0 a.m.11 views

WP Attachment Export <= 0.2.3 - Unauthenticated File Download

The WP Attachment Export WordPress plugin was affected by an Unauthenticated File Download security vulnerability...

2.8AI score
Exploits0References3Affected Software1
Packet Storm
Packet Storm
added 2015/07/15 12:0 a.m.27 views

WordPress WP Attachment Export 0.2.3 Arbitrary File Download

Title: Arbitrary File Download in WP Attachment Export Wordpress Plugin v0.2.3 Submitter: Nitin Venkatesh Product: WP Attachment Export Wordpress Plugin Product URL: https://wordpress.org/plugins/wp-attachment-export/ Vulnerability Type: Arbitrary File Download Affected Versions: v0.2.3 Tested...

7.4AI score
Exploits0
Rows per page
Query Builder