Lucene search
Francesco CarlucciPATCHSTACK:76F28EA67ED8AC65365C316830E57896HistoryNov 15, 2021 - 12:00 a.m.
WordPress User meta shortcodes plugin <= 0.5 - Unauthorized Arbitrary User Metadata Access vulnerability
2021-11-1500:00:00
Francesco Carlucci
patchstack.com
5
0.001 Low
EPSS
Percentile
24.8%
Unauthorized Arbitrary User Metadata Access vulnerability discovered by Francesco Carlucci in WordPress User meta shortcodes plugin (versions <= 0.5).
Solution
Deactivate and delete. This plugin has been closed as of October 12, 2021 and is not available for download. This closure is temporary, pending a full review.
| CPE | Name | Operator | Version |
|---|---|---|---|
| user meta shortcodes | le | 0.5 |
Related
wpvulndb
wpvulndb
cve
cve
CVE-2021-24859
2021-12-13 11:15:09
prion
prion
Default credentials
2021-12-13 11:15:00
cnvd
cnvd
WordPress User Meta Shortcodes plugin access control error vulnerability
2021-12-18 00:00:00
nvd
nvd
CVE-2021-24859
2021-12-13 11:15:09
wpexploit
wpexploit
cvelist
cvelist