Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 4:35 a.m.5 views

CVE-2023-49822

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in David Vongries Ultimate Dashboard allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Ultimate Dashboard: from n/a through 3.7.10...

3.7CVSS6.8AI score0.00303EPSS
Exploits0
cve
cve
added 2024/06/04 11:24 a.m.30 views

CVE-2023-49822

CVE-2023-49822 affects the WordPress plugin “Ultimate Dashboard” (Ultimate Dashboard) up to version 3.7.10. The issue is a login-page disclosure vulnerability that can reveal the secret login page URL to unauthenticated actors on multisite installations, effectively bypassing access constraints a...

3.7CVSS4.1AI score0.00303EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/06/04 11:24 a.m.13 views

CVE-2023-49822 WordPress Ultimate Dashboard plugin <= 3.7.10 - Secret Login Page Location Disclosure on Multisites vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in David Vongries Ultimate Dashboard allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Ultimate Dashboard: from n/a through 3.7.10...

3.7CVSS6.8AI score0.00303EPSS
Exploits0References1
patchstack
patchstack
added 2023/12/05 12:0 a.m.13 views

WordPress Ultimate Dashboard Plugin <= 3.7.10 is vulnerable to Bypass Vulnerability

Software Ultimate Dashboard Type Plugin Vulnerable versions = 3.7.10 Fixed in 3.7.11 OWASP Top 10 A4: Insecure Design Classification Bypass Vulnerability CVE CVE-2023-49822 Patch priority Low CVSS severity Low 3.7 Developer Claim ownership PSID 9e9819724a52 Credits Naveen Muthusamy Required...

3.7CVSS6.5AI score0.00303EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder