Descrição
The JobMonster Theme was vulnerable to Directory Listing in the /wp-content/uploads/jobmonster/ folder, as it did not include a default PHP file, or .htaccess file. This could expose personal data such as people’s resumes. Although Directory Listing can be prevented by securely configuring the web server, vendors can also take measures to make it less likely to happen.
Software
Não informado
Tipo Software
Core
CVE
CVE-2022-1166
Tags
Nâo informado
Data de publicação
04/04/2022
Última atualização
25/05/2022
Pontuação em CVSS 3.0
5.3
Médio