Lucene search
Dmitrii IgnatyevWPVDB-ID:EAE63103-3DE6-4100-8F48-2BCF9A5C91FBHistoryDec 13, 2023 - 12:00 a.m.
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-1300:00:00
Dmitrii Ignatyev
wpscan.com
3
plugin
directory listing
vulnerability
debug log
authorization
sensitive data
wordpress
Description The plugin contains a Directory listing vulnerability was discovered, which allows you to download the debug log without authorization and gain access to sensitive data
PoC
https://your_site/wordpress/wp-content/uploads/debug-log-manager/
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 2.3.0 |
Related
cve
cve
CVE-2023-6383
2024-01-08 19:15:10
nvd
nvd
CVE-2023-6383
2024-01-08 19:15:10
wpexploit
wpexploit
Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2023-12-13 00:00:00
prion
prion
Directory traversal
2024-01-08 19:15:00
cvelist
cvelist
CVE-2023-6383 Debug Log Manager < 2.3.0 - Sensitive Logs Exposure
2024-01-08 19:00:34
6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.1%
Related for WPVDB-ID:EAE63103-3DE6-4100-8F48-2BCF9A5C91FB