CVE-2023-4930

CVE-2023-4930

The Front End PM WordPress plugin before 11.4.3 does not block listing the contents of the directories where it stores attachments to private messages, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled.

Source: CVE-2023-4930

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다