We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Describe the bug I found that word fence reports some issues with the plugin 4 vulnerabilities
TitleCVE IDCVSS ResearchersDate KB Support <= 1.5.88 – Missing Authorization to Authenticated (Subscriber+) User Data Retrieval4.3July 12, 2023 KB Support <= 1.5.88 – Missing Authorization to Sensitive Data ExposureCVE-2023-378905.4Rafshanzani SuhadaJuly 11, 2023 KB Support <= 1.5.84 – Authenticated (Subscriber+) CSV InjectionCVE-2023-259834.4Rafshanzani SuhadaFebruary 24, 2023 KB Support – WordPress Help Desk <= 1.5.5 – Multiple Unauthenticated Stored Cross-Site ScriptingCVE-2022-278524.7Ngo Van ThienApril 15, 2022
https://kb-support.com/wp-admin/post.php?post=21436&action=edit
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Describe the bug
I found that word fence reports some issues with the plugin
4 vulnerabilities
TitleCVE IDCVSS ResearchersDate
KB Support <= 1.5.88 – Missing Authorization to Authenticated
(Subscriber+) User Data Retrieval4.3July 12, 2023
KB Support <= 1.5.88 – Missing Authorization to Sensitive Data
ExposureCVE-2023-378905.4Rafshanzani SuhadaJuly 11, 2023
KB Support <= 1.5.84 – Authenticated (Subscriber+) CSV
InjectionCVE-2023-259834.4Rafshanzani SuhadaFebruary 24, 2023
KB Support – WordPress Help Desk <= 1.5.5 – Multiple Unauthenticated
Stored Cross-Site ScriptingCVE-2022-278524.7Ngo Van ThienApril 15,
2022
https://kb-support.com/wp-admin/post.php?post=21436&action=edit
The text was updated successfully, but these errors were encountered: