Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-27071

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00474EPSS
Exploits0References2
OSV
OSV
added 2024/03/12 10:15 p.m.9 views

CVE-2024-2107

The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.4 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled posts...

7.5CVSS5.8AI score0.00474EPSS
Exploits0References2
NVD
NVD
added 2024/03/12 10:15 p.m.34 views

CVE-2024-2107

The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.3 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled posts...

7.5CVSS5.5AI score0.00474EPSS
Exploits0References2
Prion
Prion
added 2024/03/12 10:15 p.m.22 views

Design/Logic Flaw

The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.4 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled posts...

5CVSS7AI score0.00474EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/03/12 9:34 p.m.13 views

CVE-2024-2107 Blossom Spa <= 1.3.3 - Sensitive Information Exposure

The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.3 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled posts...

5.8CVSS6.7AI score0.00474EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/12 9:34 p.m.27 views

CVE-2024-2107 Blossom Spa <= 1.3.3 - Sensitive Information Exposure

The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.3 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled posts...

5.8CVSS5.7AI score0.00474EPSS
Exploits0References2
CVE
CVE
added 2024/03/12 9:34 p.m.64 views

CVE-2024-2107

CVE-2024-2107 affects the Blossom Spa WordPress theme (versions up to 1.3.4). The vulnerability enables sensitive information exposure via generated source, allowing unauthenticated attackers to retrieve contents of password-protected or scheduled posts. The connected Red Hat advisory reiterates ...

7.5CVSS6.7AI score0.00474EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/12 12:0 a.m.9 views

WordPress Blossom Spa Theme <= 1.3.4 is vulnerable to Sensitive Data Exposure

Software Blossom Spa Type Theme Vulnerable versions = 1.3.4 Fixed in 1.3.5 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2107 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID fe344129382a Credits Krzysztof Zając Required...

7.5CVSS6.5AI score0.00474EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2024/03/12 12:0 a.m.6 views

WordPress Plugin Blossom Spa Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

7.5CVSS6.5AI score0.00474EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2024/03/12 12:0 a.m.13 views

Blossom Spa < 1.3.5 - Sensitive Information Exposure

Description The Blossom Spa theme for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.3.4 via generated source. This makes it possible for unauthenticated attackers to extract sensitive data including contents of password-protected or scheduled...

7.5CVSS6.7AI score0.00474EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder