Vulnerabilities > CVE-2023-22687 - Insecure Storage of Sensitive Information vulnerability in Freesoul Deactivate Plugins - Plugin Manager and Cleanup Project Freesoul Deactivate Plugins - Plugin Manager and Cleanup

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

freesoul-deactivate-plugins-plugin-manager-and-cleanup-project

CWE-922

NVD

Published: 2023-04-16

Updated: 2023-04-21

Summary

Insecure Storage of Sensitive Information vulnerability in Jose Mortellaro Freesoul Deactivate Plugins – Plugin manager and cleanup plugin <= 1.9.4.0 versions.

Vulnerable Configurations

Part	Description	Count
Application	Freesoul_Deactivate_Plugins_-_Plugin_Manager_And_Cleanup_Project Freesoul Deactivate Plugins Plugin Manager AND Cleanup Project Freesoul Deactivate Plugins Plugin Manager AND Cleanup *	1

Common Weakness Enumeration (CWE)

CWE-922 - Insecure Storage of Sensitive Information

References

https://patchstack.com/database/vulnerability/freesoul-deactivate-plugins/wordpress-freesoul-deactivate-plugins-plugin-manager-and-cleanup-plugin-1-9-4-0-content-spoofing?_s_id=cve