WordPress <= 3.3.2 - Information Disclosure

2014-01-2000:00:00

markjaquith

patchstack.com

0.001 Low

EPSS

Percentile

44.7%

Because of this vulnerability, the authenticated users can obtain sensitive information by visiting a draft.

Solution

           Update the plugin.

CPENameOperatorVersion
wordpressle3.3.2

CPE	Name	Operator	Version
	wordpress	le	3.3.2

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6635

0.001 Low

EPSS

Percentile

44.7%

Related for PATCHSTACK:8E29D88F567F49EEC8245279337864E8