Lucene search
K

6 matches found

Circl
Circl
added 2023/08/31 12:12 p.m.6 views

CVE-2023-0689

creationtimestamp| type| source ---|---|--- 2023-08-31 12:12:52+00:00| seen| https://t.me/cibsecurity/69517...

4.3CVSS6.2AI score0.0046EPSS
Exploits0References1
NVD
NVD
added 2023/08/31 6:15 a.m.20 views

CVE-2023-0689

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mffirstname' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about arbitrar...

4.3CVSS4.3AI score0.0046EPSS
Exploits0References3
OSV
OSV
added 2023/08/31 6:15 a.m.5 views

CVE-2023-0689

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mffirstname' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about arbitrar...

4.3CVSS7.4AI score0.0046EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/31 5:33 a.m.28 views

CVE-2023-0689 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_first_name' shortcode

The Metform Elementor Contact Form Builder for WordPress is vulnerable to Information Disclosure via the 'mffirstname' shortcode in versions up to, and including, 3.3.1. This allows authenticated attackers, with subscriber-level capabilities or above to obtain sensitive information about arbitrar...

4.3CVSS4.6AI score0.0046EPSS
Exploits0References3
CVE
CVE
added 2023/08/31 5:33 a.m.33 views

CVE-2023-0689

The CVE-2023-0689 entry concerns the WordPress Metform Elementor Contact Form Builder plugin. Affected: Metform Elementor Contact Form Builder for WordPress, versions up to and including 3.3.1. Issue: Information disclosure via the mf_first_name shortcode, allowing authenticated attackers with su...

4.3CVSS4.7AI score0.0046EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2023/08/31 12:0 a.m.9 views

WordPress Metform Elementor Contact Form Builder Plugin <= 3.3.1 is vulnerable to Sensitive Data Exposure

Software Metform Elementor Contact Form Builder Type Plugin Vulnerable versions = 3.3.1 Fixed in 3.3.2 OWASP Top 10 A5: Security Misconfiguration Classification Sensitive Data Exposure CVE CVE-2023-0689 Patch priority Low CVSS severity Low 4.3 Developer Wpmet PSID 4be7cb75c51f Credits Ramuel Gall...

4.3CVSS6.5AI score0.0046EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder