by vicarius
Log in
Join
community
CVE-2022-1598
08 Jun 2022
The WPQA Builder WordPress plugin before 5.4 which is a companion to the Discy and Himer , lacks authentication in a REST API endpoint, allowing unauthenticated users to discover private questions sent between users on the site.
VTranslations (0)
Suggest your own translation
Remedies (0)
Suggest your own remedy
Apps (0)
No Apps
Operating Systems (0)
No Operating Systems
Comments (0)
Submit
CVE-2022-1598
5.3 Medium Severity
0
0
0
Share
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Tags (4)
#known_vulnerability
#easy_to_exploit
#new_vulnerability_published
#CVE-2022-1598
Vulnerability Categories (1)
Improper Access Control
Advisory Links (1)
wpscan.com/vulner...
Related
Comments (0)