CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4242

The FULL - Customer plugin for WordPress is vulnerable to Information Disclosure via the /health REST route in versions up to, and including, 2.2.3 due to improper authorization. This allows authenticated attackers with subscriber-level permissions and above to obtain sensitive information about the site configuration as disclosed by the WordPress health check.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.8%

CVSS Severity

CVSS v3 Score 4.3

References

Products affected by CVE-2023-4242

Full » Full - Customer » Version: N/A

cpe:2.3:a:full:full_-_customer:-
Full » Full - Customer » Version: 0.0.10

cpe:2.3:a:full:full_-_customer:0.0.10
Full » Full - Customer » Version: 0.0.2

cpe:2.3:a:full:full_-_customer:0.0.2
Full » Full - Customer » Version: 0.0.3

cpe:2.3:a:full:full_-_customer:0.0.3
Full » Full - Customer » Version: 0.0.4

cpe:2.3:a:full:full_-_customer:0.0.4
Full » Full - Customer » Version: 0.0.5

cpe:2.3:a:full:full_-_customer:0.0.5
Full » Full - Customer » Version: 0.0.6

cpe:2.3:a:full:full_-_customer:0.0.6
Full » Full - Customer » Version: 0.0.7

cpe:2.3:a:full:full_-_customer:0.0.7
Full » Full - Customer » Version: 0.0.8

cpe:2.3:a:full:full_-_customer:0.0.8
Full » Full - Customer » Version: 0.0.9

cpe:2.3:a:full:full_-_customer:0.0.9
Full » Full - Customer » Version: 0.1.0

cpe:2.3:a:full:full_-_customer:0.1.0
Full » Full - Customer » Version: 0.1.1

cpe:2.3:a:full:full_-_customer:0.1.1
Full » Full - Customer » Version: 0.1.2

cpe:2.3:a:full:full_-_customer:0.1.2
Full » Full - Customer » Version: 0.2.0

cpe:2.3:a:full:full_-_customer:0.2.0
Full » Full - Customer » Version: 0.2.1

cpe:2.3:a:full:full_-_customer:0.2.1
Full » Full - Customer » Version: 0.2.2

cpe:2.3:a:full:full_-_customer:0.2.2
Full » Full - Customer » Version: 0.2.3

cpe:2.3:a:full:full_-_customer:0.2.3
Full » Full - Customer » Version: 0.2.4

cpe:2.3:a:full:full_-_customer:0.2.4
Full » Full - Customer » Version: 1.0.0

cpe:2.3:a:full:full_-_customer:1.0.0
Full » Full - Customer » Version: 1.0.1

cpe:2.3:a:full:full_-_customer:1.0.1
Full » Full - Customer » Version: 1.0.2

cpe:2.3:a:full:full_-_customer:1.0.2
Full » Full - Customer » Version: 1.0.3

cpe:2.3:a:full:full_-_customer:1.0.3
Full » Full - Customer » Version: 1.0.4

cpe:2.3:a:full:full_-_customer:1.0.4
Full » Full - Customer » Version: 1.0.5

cpe:2.3:a:full:full_-_customer:1.0.5
Full » Full - Customer » Version: 1.0.6

cpe:2.3:a:full:full_-_customer:1.0.6
Full » Full - Customer » Version: 1.0.7

cpe:2.3:a:full:full_-_customer:1.0.7
Full » Full - Customer » Version: 1.0.8

cpe:2.3:a:full:full_-_customer:1.0.8
Full » Full - Customer » Version: 1.1.0

cpe:2.3:a:full:full_-_customer:1.1.0
Full » Full - Customer » Version: 1.2

cpe:2.3:a:full:full_-_customer:1.2
Full » Full - Customer » Version: 1.2.1

cpe:2.3:a:full:full_-_customer:1.2.1
Full » Full - Customer » Version: 1.2.2

cpe:2.3:a:full:full_-_customer:1.2.2
Full » Full - Customer » Version: 2.0

cpe:2.3:a:full:full_-_customer:2.0
Full » Full - Customer » Version: 2.0.1

cpe:2.3:a:full:full_-_customer:2.0.1
Full » Full - Customer » Version: 2.0.2

cpe:2.3:a:full:full_-_customer:2.0.2
Full » Full - Customer » Version: 2.0.3

cpe:2.3:a:full:full_-_customer:2.0.3
Full » Full - Customer » Version: 2.0.4

cpe:2.3:a:full:full_-_customer:2.0.4
Full » Full - Customer » Version: 2.0.5

cpe:2.3:a:full:full_-_customer:2.0.5
Full » Full - Customer » Version: 2.0.6

cpe:2.3:a:full:full_-_customer:2.0.6
Full » Full - Customer » Version: 2.0.7

cpe:2.3:a:full:full_-_customer:2.0.7
Full » Full - Customer » Version: 2.0.8

cpe:2.3:a:full:full_-_customer:2.0.8
Full » Full - Customer » Version: 2.0.9

cpe:2.3:a:full:full_-_customer:2.0.9
Full » Full - Customer » Version: 2.0.9.1

cpe:2.3:a:full:full_-_customer:2.0.9.1
Full » Full - Customer » Version: 2.1.0

cpe:2.3:a:full:full_-_customer:2.1.0
Full » Full - Customer » Version: 2.1.1

cpe:2.3:a:full:full_-_customer:2.1.1
Full » Full - Customer » Version: 2.1.2

cpe:2.3:a:full:full_-_customer:2.1.2
Full » Full - Customer » Version: 2.2

cpe:2.3:a:full:full_-_customer:2.2
Full » Full - Customer » Version: 2.2.1

cpe:2.3:a:full:full_-_customer:2.2.1
Full » Full - Customer » Version: 2.2.2

cpe:2.3:a:full:full_-_customer:2.2.2
Full » Full - Customer » Version: 2.2.3

cpe:2.3:a:full:full_-_customer:2.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-4242

Products

Pricing

Contact Us