Lucene search
Francesco CarlucciPATCHSTACK:8EABF250568622538E1B39B73DFE3700HistoryNov 09, 2021 - 12:00 a.m.
WordPress Get Custom Field Values plugin <= 3.9.4 - Arbitrary Post Metadata Access vulnerability
2021-11-0900:00:00
Francesco Carlucci
patchstack.com
7
wordpress
custom field values
arbitrary post metadata access
francesco carlucci
update
EPSS
0.001
Percentile
32.8%
Arbitrary Post Metadata Access vulnerability discovered by Francesco Carlucci in WordPress Get Custom Field Values plugin (versions <= 3.9.4).
Solution
Update the WordPress Get Custom Field Values plugin to the latest available version (at least 4.0).
Related
cvelist
cvelist
osv
osv
CVE-2021-24872
2021-12-13 11:15:09
cnvd
cnvd
WordPress Get Custom Field Values plugin access control error vulnerability
2021-12-18 00:00:00
cve
cve
CVE-2021-24872
2021-12-13 11:15:09
prion
prion
Design/Logic Flaw
2021-12-13 11:15:00
wpvulndb
wpvulndb
Get Custom Field Values < 4.0 - Contributors+ Arbitrary Post Metadata Access
2021-11-09 00:00:00
wpexploit
wpexploit
Get Custom Field Values < 4.0 - Contributors+ Arbitrary Post Metadata Access
2021-11-09 00:00:00
nvd
nvd
CVE-2021-24872
2021-12-13 11:15:09