kb-support
kb-support copied to clipboard
vulnerabilities with wordfence
Describe the bug I found that word fence reports some issues with the plugin 4 vulnerabilities
TitleCVE IDCVSS ResearchersDate KB Support <= 1.5.88 – Missing Authorization to Authenticated (Subscriber+) User Data Retrieval4.3July 12, 2023 KB Support <= 1.5.88 – Missing Authorization to Sensitive Data ExposureCVE-2023-378905.4Rafshanzani SuhadaJuly 11, 2023 KB Support <= 1.5.84 – Authenticated (Subscriber+) CSV InjectionCVE-2023-259834.4Rafshanzani SuhadaFebruary 24, 2023 KB Support – WordPress Help Desk <= 1.5.5 – Multiple Unauthenticated Stored Cross-Site ScriptingCVE-2022-278524.7Ngo Van ThienApril 15, 2022
https://kb-support.com/wp-admin/post.php?post=21436&action=edit