CVE-2023-52147

CVSS V2 None CVSS V3 None

Description

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in All In One WP Security & Firewall Team All In One WP Security & Firewall allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects All In One WP Security & Firewall: from n/a through 5.2.4.

Overview

CVE ID
CVE-2023-52147

Assigner
Patchstack

Vulnerability Status
PUBLISHED

Published Version
2024-06-04T12:38:45.579Z

Last Modified Date
2024-06-04T12:38:45.579Z

Weakness Enumerations

CWE	URL
CWE-200	http://cwe.mitre.org/data/definitions/200.html

References

Reference URL	Reference Tags
https://patchstack.com/database/vulnerability/all-in-one-wp-security-and-firewall/wordpress-all-in-one-security-aios-plugin-5-2-4-secret-login-page-location-disclosure-on-multisites-vulnerability?_s_id=cve	vdb-entry

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-52147
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52147

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 15:14:47				Added to TrackCVE