Vulnerability Details CVE-2023-6065
The Quttera Web Malware Scanner WordPress plugin before 3.4.2.1 doesn't restrict access to detailed scan logs, which allows a malicious actor to discover local paths and portions of the site's code
Exploit prediction scoring system (EPSS) score
EPSS Score 0.463
EPSS Ranking 97.5%
CVSS Severity
CVSS v3 Score 5.3
References
- https://drive.google.com/file/d/1w83xWsVLS_gCpQy4LDwbjNK9JaB87EEf/view?usp=sharing
- https://wpscan.com/vulnerability/64f2557f-c5e4-4779-9e28-911dfaf2dda5
- https://drive.google.com/file/d/1w83xWsVLS_gCpQy4LDwbjNK9JaB87EEf/view?usp=sharing
- https://wpscan.com/vulnerability/64f2557f-c5e4-4779-9e28-911dfaf2dda5
Products affected by CVE-2023-6065
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:1.0.0
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.21.17
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.7.0
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.7.20
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.7.21
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.7.22
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.7.45
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.8.1
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.8.65
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.0.9.1
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.1.1.0
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.2.1.97
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.3.0.22
-
cpe:2.3:a:quttera:quttera_web_malware_scanner:3.4.0.1