Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-4428 what3words Autosuggest Plugin Setting class-w3w-autosuggest-public.php enqueue_scripts information disclosure

🗓️ 18 Jul 2023 17:00:04Reported by VulDBType 
cvelist
 cvelist🔗 www.cve.org👁 18 Views

Vulnerability in what3words Autosuggest Plugin Setting class-w3w-autosuggest-public.ph

Related
Affected
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: Vulnerability in Apache Log4j (CVE-2021-44228) affects IBM Spectrum Fusion HCI which includes IBM Spectrum Scale Container Native Storage Access and IBM Spectrum Protect Plus
17 Jan 202216:44
ibm
Gitee		Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
12 Dec 202121:05
gitee
GithubExploit		Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
17 Dec 202106:34
githubexploit
Circl		CVE-2021-4428
17 Dec 202106:39
circl
CNNVD		WordPress Plugin What3words Autosuggest 信息泄露漏洞
18 Jul 202300:00
cnnvd
CVE		CVE-2021-4428
18 Jul 202317:00
cve
Microsoft Malware Protection		Guidance for preventing, detecting, and hunting for exploitation of the Log4j 2 vulnerability
12 Dec 202105:29
mmpc
Microsoft Secure		Guidance for preventing, detecting, and hunting for exploitation of the Log4j 2 vulnerability
12 Dec 202105:29
mssecure
NVD		CVE-2021-4428
18 Jul 202317:15
nvd
Patchstack		WordPress what3words Address Field Plugin <= 4.0.0 is vulnerable to Sensitive Data Exposure
24 Jul 202300:00
patchstack
Rows per page
[
  {
    "vendor": "what3words",
    "product": "Autosuggest Plugin",
    "versions": [
      {
        "version": "4.0",
        "status": "affected"
      }
    ],
    "modules": [
      "Setting Handler"
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
20 Oct 2023 13:57Current
7.6High risk
Vulners AI Score7.6
CVSS 3.12.7
CVSS 32.7
CVSS 23.3
EPSS0.15808
CWE-200
wordpresscomponent setting handlerinformation disclosureremote attackupgradevulnerabilitywhat3words autosuggest plugin
18