7 matches found
CVE-2024-6545
The Admin Trim Interface plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.5.1. This is due to the plugin utilizing bootstrap and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to retrieve the full pa...
WordPress Admin Trim Interface plugin <= 3.5.1 - Unauthenticated Full Path Disclosure vulnerability
Unauthenticated Full Path Disclosure vulnerability discovered by stealthcopter in WordPress Plugin Admin Trim Interface versions = 3.5.1...
WordPress Admin Trim Interface Plugin <= 3.5.1 is vulnerable to Sensitive Data Exposure
Software Admin Trim Interface Type Plugin Vulnerable versions = 3.5.1 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6545 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4e884f0bbd90 Credits stealthcopter Required...
CVE-2024-6545
CVE-2024-6545 affects the WordPress Admin Trim Interface plugin up to version 3.5.1, enabling unauthenticated full path disclosure due to bootstrap usage and test files with display_errors enabled. Attackers can retrieve the web app path, which may aid other attacks; the disclosed info alone is n...
CVE-2024-6545 Admin Trim Interface <= 3.5.1 - Unauthenticated Full Path Disclosure
The Admin Trim Interface plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.5.1. This is due to the plugin utilizing bootstrap and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to retrieve the full pa...
PT-2024-37702 · WordPress · Admin Trim Interface
Name of the Vulnerable Software and Affected Versions: Admin Trim Interface plugin for WordPress versions up to, and including, 3.5.1 Description: The issue is related to Full Path Disclosure, which occurs because the plugin utilizes bootstrap and leaves test files with display errors on. This...
WordPress plugin Admin Trim Interface 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...