Primary

Context

GreenPay by Green.Money WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

A vulnerability allowing sensitive information exposure has been identified in the GreenPay by Green.Money plugin for WordPress, specifically in versions 3.0.0 prior to 3.0.9. The issue arises from a publicly accessible phpinfo.php script, which allows unauthenticated attackers to view potentially sensitive information.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information, which may include details about the server environment, PHP configuration, and other potentially confidential data.

Remediation

Users can update to version 3.0.10 or a newer patched version to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.1

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

GreenPay by Green.Money WordPress Plugin Sensitive Information Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating