Lucene search
Mariusz PoplawskiPATCHSTACK:93F3551FC01A0EE00AB3B92BABBB3F16HistoryJun 28, 2020 - 12:00 a.m.
WordPress ACF to REST API plugin <= 3.2.0 - Unauthenticated Sensitive Information Disclosure vulnerability
2020-06-2800:00:00
Mariusz Poplawski
patchstack.com
7
EPSS
0.018
Percentile
88.3%
Unauthenticated Sensitive Information Disclosure vulnerability discovered by Mariusz Poplawski in WordPress ACF to REST API plugin (versions <= 3.2.0).
Solution
Update the WordPress ACF to REST API plugin to the latest available version (at least 3.3.0).
Related
cvelist
cvelist
CVE-2020-13700
2020-06-24 14:25:30
wpvulndb
wpvulndb
ACF to REST API < 3.3.0 - Unauthenticated Arbitrary wp_options Disclosure
2020-06-28 00:00:00
nvd
nvd
CVE-2020-13700
2020-06-24 15:15:11
github
github
osv
osv
CVE-2020-13700
2020-06-24 15:15:11
openvas
openvas
WordPress ACF to REST API Plugin <= 3.1.0 IDOR Vulnerability
2021-04-13 00:00:00
cve
cve
CVE-2020-13700
2020-06-24 15:15:11
prion
prion
Cross site request forgery (csrf)
2020-06-24 15:15:00
wpexploit
wpexploit
ACF to REST API < 3.3.0 - Unauthenticated Arbitrary wp_options Disclosure
2020-06-28 00:00:00
gitlab
gitlab
Information Exposure
2020-06-24 00:00:00
nuclei
nuclei
WordPresss acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference
2021-03-10 04:14:33