3 matches found
CVE-2022-2834
The Helpful WordPress plugin before 4.5.26 puts the exported logs and feedbacks in a publicly accessible location and guessable names, which could allow attackers to download them and retrieve sensitive information such as IP, Names and Email Address depending on the plugin's settings...
CVE-2022-2834
The CVE-2022-2834 entry concerns the WordPress Helpful plugin (versions before 4.5.26). The vulnerability arises because exported logs and feedbacks are stored in publicly accessible locations with guessable file names, enabling attackers to download them and potentially retrieve sensitive inform...
CVE-2022-2834 Helpful < 4.5.26 - Information Disclosure
The Helpful WordPress plugin before 4.5.26 puts the exported logs and feedbacks in a publicly accessible location and guessable names, which could allow attackers to download them and retrieve sensitive information such as IP, Names and Email Address depending on the plugin's settings...