Vulnerabilities > CVE-2023-51490 - Unspecified vulnerability in Wpmudev Defender Security

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

wpmudev

NVD

Published: 2024-01-08

Updated: 2024-11-21

Summary

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WPMU DEV Defender Security – Malware Scanner, Login Security & Firewall.This issue affects Defender Security – Malware Scanner, Login Security & Firewall: from n/a through 4.1.0.

Vulnerable Configurations

Part	Description	Count
Application	Wpmudev Wpmudev Defender Security 3.11.0 Wpmudev Defender Security 3.11.1 Wpmudev Defender Security 3.12.0 Wpmudev Defender Security 4.0.0 Wpmudev Defender Security 4.0.1 Wpmudev Defender Security 4.0.2 Wpmudev Defender Security 4.1.0	7

References

https://patchstack.com/database/vulnerability/defender-security/wordpress-defender-security-plugin-4-1-0-sensitive-data-exposure-via-log-file-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/defender-security/wordpress-defender-security-plugin-4-1-0-sensitive-data-exposure-via-log-file-vulnerability?_s_id=cve