Vulnerabilities > CVE-2021-25009 - Unspecified vulnerability in Correosexpress Project Correosexpress

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
correosexpress-project

Summary

The CorreosExpress WordPress plugin through 2.6.0 generates log files which are publicly accessible, and contain sensitive information such as sender/receiver names, phone numbers, physical and email addresses

Vulnerable Configurations

Part Description Count
Application
Correosexpress_Project
48