5.3
CVE-2016-10929
- EPSS 0.25%
- Published 22.08.2019 20:15:11
- Last modified 21.11.2024 02:45:05
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in.
Data is provided by the National Vulnerability Database (NVD)
Advanced Ajax Page Loader Project ≫ Advanced Ajax Page Loader SwPlatformwordpress Version < 2.7.7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.453 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|