syncee syncee_-_global_dropshipping 信息暴露

admin

0
文章

0
评论

2023-11-30 04:48:12 Ali_nvd 来源：ZONE.CI 全球网 0 阅读模式

syncee syncee_-_global_dropshipping 信息暴露

CVE编号

CVE-2022-3694

利用情况

暂无

补丁情况

N/A

披露时间

2022-12-06

漏洞描述

The Syncee WordPress plugin before 1.0.10 leaks the administrator token that can be used to take over the administrator's account.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
https://wpscan.com/vulnerability/ad12bab7-9baf-4646-a93a-0d3286407c1e

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	syncee	syncee_-_global_dropshipping	*		Up to (excluding) 1.0.10
	运行在以下环境
	系统	alibaba_cloud_linux_2.1903	kernel	*		Up to (excluding) 4.19.91-26.6.al7
	运行在以下环境
	系统	amazon_2	kernel	*		Up to (excluding) 4.14.294-220.533.amzn2
	运行在以下环境
	系统	amazon_2022	kernel	*		Up to (excluding) 5.15.73-45.135.amzn2022
	运行在以下环境
	系统	amazon_2023	kernel	*		Up to (excluding) 6.1.10-15.42.amzn2023
	运行在以下环境
	系统	amazon_AMI	kernel	*		Up to (excluding) 4.14.294-150.533.amzn1
	运行在以下环境
	系统	anolis_os_7	kernel	*		Up to (excluding) 4.19
	运行在以下环境
	系统	anolis_os_8	kernel	*		Up to (excluding) 5.10
	运行在以下环境
	系统	centos_8	kernel	*		Up to (excluding) 4.18.0-425.3.1.el8
	运行在以下环境
	系统	fedora_35	scala-apidoc	*		Up to (excluding) 2.13.9-1.fc35
	运行在以下环境
	系统	fedora_36	scala-apidoc	*		Up to (excluding) 2.13.9-1.fc36
	运行在以下环境
	系统	kylinos_aarch64_V10SP2	kernel	*		Up to (excluding) 4.19.90-25.19.v2101.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10SP2	kernel	*		Up to (excluding) 4.19.90-25.19.v2101.ky10
	运行在以下环境
	系统	opensuse_5.2	kernel	*		Up to (excluding) 5.3.18-150300.59.90.1.150300.18.52.1
	运行在以下环境
	系统	opensuse_Leap_15.3	kernel	*		Up to (excluding) 5.3.18-150300.59.90.1
	运行在以下环境
	系统	opensuse_Leap_15.4	dtb-al	*		Up to (excluding) 5.14.21-150400.24.21.2
	运行在以下环境
	系统	oracle_8	kernel	*		Up to (excluding) 4.18.0-425.3.1.el8
	运行在以下环境
	系统	oracle_9	kernel	*		Up to (excluding) 5.14.0-162.6.1.el9_1
	运行在以下环境
	系统	redhat_8	kernel	*		Up to (excluding) 4.18.0-425.3.1.el8
	运行在以下环境
	系统	redhat_9	kernel	*		Up to (excluding) 5.14.0-162.6.1.el9_1
	运行在以下环境
	系统	suse_12_SP5	kernel	*		Up to (excluding) 4.12.14-122.130.1