Lucene search
K

14 matches found

NVD
NVD
added 3 days ago7 views

CVE-2026-6801

The Context Blog theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the contextblogmodalpopup. This makes it possible for unauthenticated attackers to extract the content of password-protected posts...

5.3CVSS0.00239EPSS
Exploits0References2
EUVD
EUVD
added 3 days ago8 views

EUVD-2026-43153

The Context Blog theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the contextblogmodalpopup. This makes it possible for unauthenticated attackers to extract the content of password-protected posts...

5.3CVSS6.1AI score0.00239EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago39 views

CVE-2026-6801 Context Blog <= 1.3.5 - Unauthenticated Sensitive Information Exposure via 'postID' Parameter

The Context Blog theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.5 via the contextblogmodalpopup. This makes it possible for unauthenticated attackers to extract the content of password-protected posts...

5.3CVSS0.00239EPSS
Exploits0References2
CVE
CVE
added 3 days ago19 views

CVE-2026-6801

The Context Blog theme for WordPress is affected up to version 1.3.5. The vulnerability is an unauthenticated sensitive information exposure via the context_blog_modal_popup, which can let an attacker retrieve the content of password-protected posts. The root cause is exposure through a postID pa...

5.3CVSS6.1AI score0.00239EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/02 12:0 a.m.3 views

WordPress Plugin Context Blog Information Disclosure Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Context Blog. The...

5.3CVSS5.6AI score0.00336EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/19 7:28 a.m.7 views

CVE-2025-12074

The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'contextblogmodalpopup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from passwor...

5.3CVSS5.6AI score0.00336EPSS
Exploits0References1
NVD
NVD
added 2026/02/18 5:16 a.m.10 views

CVE-2025-12074

The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'contextblogmodalpopup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from passwor...

5.3CVSS0.00336EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/18 4:35 a.m.5 views

CVE-2025-12074 Context Blog <= 1.2.5 - Unauthenticated Private Post Disclosure

The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'contextblogmodalpopup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from passwor...

5.3CVSS5.6AI score0.00336EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/18 4:35 a.m.9 views

CVE-2025-12074

The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'contextblogmodalpopup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from passwor...

5.3CVSS5.6AI score0.00336EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/18 4:35 a.m.27 views

CVE-2025-12074 Context Blog <= 1.2.5 - Unauthenticated Private Post Disclosure

The Context Blog theme for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.5 via the 'contextblogmodalpopup' due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from passwor...

5.3CVSS0.00336EPSS
Exploits0References5
CVE
CVE
added 2026/02/18 4:35 a.m.24 views

CVE-2025-12074

CVE-2025-12074 affects Context Blog (WordPress theme) up to version 1.2.5, enabling unauthenticated information exposure through context_blog_modal_popup due to insufficient post-access restrictions. Impact is exposure of data from password-protected, private, or draft posts. Public advisories fr...

5.3CVSS5.6AI score0.00336EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.13 views

WordPress plugin Context Blog 信息泄露漏洞

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin Context Blog. The...

5.3CVSS5.7AI score0.00336EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.10 views

PT-2026-20219

Name of the Vulnerable Software and Affected Versions Context Blog theme for WordPress versions through 1.2.5 Description The Context Blog theme for WordPress is susceptible to information disclosure in versions up to and including 1.2.5. This is due to inadequate restrictions on post inclusion...

5.3CVSS5.4AI score0.00336EPSS
Exploits0References7
Patchstack
Patchstack
added 2026/02/17 11:45 p.m.7 views

WordPress Context Blog theme <= 1.2.5 - Unauthenticated Private Post Disclosure vulnerability

Unauthenticated Private Post Disclosure vulnerability discovered by jsonc in WordPress Theme Context Blog versions = 1.2.5...

5.3CVSS5.5AI score0.00336EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder