WordPress Add Admin JavaScript plugin <= 2.0 - Unauthenticated Full Path Dislcosure vulnerability

Unauthenticated Full Path Dislcosure vulnerability discovered by stealthcopter in WordPress Plugin Add Admin JavaScript versions = 2.0...

WordPress Add Admin JavaScript Plugin <= 2.0 is vulnerable to Sensitive Data Exposure

Software Add Admin JavaScript Type Plugin Vulnerable versions = 2.0 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6548 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 9dd89390081b Credits stealthcopter Required...

CVE-2024-6548

The Add Admin JavaScript plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.0. This is due to the plugin utilizing bootstrap and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to retrieve the full path...

CVE-2024-6548

CVE-2024-6548 affects the WordPress plugin Add Admin JavaScript (versions

PT-2024-37705 · WordPress · Add Admin Javascript

Name of the Vulnerable Software and Affected Versions: Add Admin JavaScript plugin for WordPress versions up to and including 2.0 Description: The issue allows unauthenticated attackers to retrieve the full path of the web application, which can aid other attacks. However, the information display...

WordPress plugin Add Admin JavaScript 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...