Vulnerabilities > CVE-2022-2376 - Unspecified vulnerability in Wpwax Directorist

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
NONE
Availability impact
NONE
network
low complexity
wpwax

Summary

The Directorist WordPress plugin before 7.3.1 discloses the email address of all users in an AJAX action available to both unauthenticated and any authenticated users

Vulnerable Configurations

Part Description Count
Application
Wpwax
119