Vulnerabilities > CVE-2022-34867 - Exposure of Resource to Wrong Sphere vulnerability in WP Libre Form Project WP Libre Form

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
wp-libre-form-project
CWE-668
NVD
Published: 2022-09-06
Updated: 2022-09-09

Summary

Unauthenticated Sensitive Information Disclosure vulnerability in WP Libre Form 2 plugin <= 2.0.8 at WordPress allows attackers to list and delete submissions. Affects only versions from 2.0.0 to 2.0.8.

Vulnerable Configurations

Part Description Count
Application
Wp_Libre_Form_Project
15

Common Weakness Enumeration (CWE)

References