WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure vulnerability exists in WordPress Helpful versions prior to 4.5.26. The vulnerability stems from the plugin placing exported logs and feeds in publicly accessible locations and guessable names, which can be exploited by an attacker to be able to download them and retrieve sensitive information such as IPs, names, and email addresses based on the plugin’s settings.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress helpful plugin | lt | 4.5.26 |