What the vulnerability does
01Description
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Drupal to WordPress.This issue affects FG Drupal to WordPress: from n/a through 3.70.3.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
What the vulnerability does
Insertion of Sensitive Information into Log File vulnerability in Frédéric GILLES FG Drupal to WordPress.This issue affects FG Drupal to WordPress: from n/a through 3.70.3.
Explanation of Vulnerability in Simple Terms
The FG Drupal to WordPress plugin through version 3.70.3 exposes sensitive information in logs or error messages. An unauthenticated attacker on the network can read this exposed data without user interaction. Site administrators should update the plugin to a version newer than 3.70.3 to prevent information disclosure.
What an attacker can do
Read sensitive information exposed in plugin logs or error messages without authentication.
Potential impact on your site
Sensitive data may be exposed to unauthenticated visitors, potentially revealing configuration or operational details.
Conditions required to exploit
Network access to the site; no authentication or user interaction required.
Key dates
External resources
Related vulnerabilities