CVE-2023-6821

CWE-862Missing AuthorizationCWE-5483 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 55.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Unknown Error LOG Viewer BY BestwebsoftBestwebsoft Error LOG Viewer
Timeline
PublishedMar 18

Description

The Error Log Viewer by BestWebSoft WordPress plugin before 1.1.3 is affected by a Directory Listing issue, allowing users to read and download PHP logs without authorization

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

🔴Vulnerability Details

2
CVEList
Error Log Viewer < 1.1.3 - Directory Listing to Sensitive Data Exposure2024-03-18
GHSA
GHSA-79vv-2m5g-frvv: The Error Log Viewer by BestWebSoft WordPress plugin before 12024-03-18
CVE-2023-6821 (MEDIUM CVSS 6.5) | The Error Log Viewer by BestWebSoft | cvebase.io