Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-3J78-7M59-R7GV
HistoryFeb 24, 2020 - 5:18 p.m.

Private data exposure via REST API in BuddyPress

2020-02-2417:18:26
Google
osv.dev
9

EPSS

0.002

Percentile

60.7%

JSON

In BuddyPress before 5.1.2, requests to a certain REST API endpoint can result in private user data getting exposed. Authentication is not needed.

This has been patched in version 5.1.2.

Related

github 1
veracode 1
prion 1
osv 1
openvas 1
nvd 1
cve 1
cvelist 1
github
github
Private data exposure via REST API in BuddyPress
2020-02-24 17:18:26
veracode
veracode
Information Disclosure
2020-02-25 04:39:12
prion
prion
Authentication flaw
2020-02-24 18:15:00
osv
osv
CVE-2020-5244
2020-02-24 18:15:22
openvas
openvas
WordPress BuddyPress Plugin < 5.1.2 Information Disclosure Vulnerability
2020-02-28 00:00:00
nvd
nvd
CVE-2020-5244
2020-02-24 18:15:22
cve
cve
CVE-2020-5244
2020-02-24 18:15:22
cvelist
cvelist
CVE-2020-5244 Private data exposure via REST API in BuddyPress
2020-02-24 17:25:15

EPSS

0.002

Percentile

60.7%

JSON
Related for OSV:GHSA-3J78-7M59-R7GV
github1veracode1prion1osv1openvas1nvd1cve1cvelist1