CVE-2023-6592

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Feb 5, 2024

Summary

CVE-2023-6592 is a vulnerability affecting the FastDup WordPress plugin before version 2.2. This issue allows unauthorized users to access sensitive directories containing export files through directory listing. The plugin fails to implement proper security measures, potentially exposing confidential information to attackers. WordPress users are advised to update to the latest version of FastDup to mitigate this risk. Failure to apply the patch may result in data breaches and unintended access to sensitive files.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ninja Team

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tuhTQQ
https://www.cve.org/CVERecord?id=CVE-2023-6592
https://nvd.nist.gov/vuln/detail/CVE-2023-6592

Back to Vulnerability Database

CVE-2023-6592

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations