7.5
CVE-2024-24867
- EPSS 0.28%
- Veröffentlicht 17.03.2024 16:15:08
- Zuletzt bearbeitet 20.02.2025 12:44:20
- Quelle audit@patchstack.com
- CVE-Watchlists
- Unerledigt
LoginWP Visitor Statistics (Real Time Traffic) <= 6.9.4 - Sensitive Information Exposure via Log File
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Osamaesh WP Visitor Statistics (Real Time Traffic).This issue affects WP Visitor Statistics (Real Time Traffic): from n/a through 6.9.4.
Mögliche Gegenmaßnahme
WP Visitor Statistics (Real Time Traffic): Update to version 6.9.5, or a newer patched version
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
WP Visitor Statistics (Real Time Traffic)
Version
*-6.9.4
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Plugins-market ≫ Wp Visitor Statistics SwPlatformwordpress Version <= 6.9.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.28% | 0.512 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| audit@patchstack.com | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.