4 matches found
CVE-2017-6514
WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information Path Disclosure via a /wp-json/oembed/1.0/embed?url= request, related to the "authorname":" substring...
CVE-2017-6514
WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information Path Disclosure via a /wp-json/oembed/1.0/embed?url= request, related to the "authorname":" substring...
CVE-2017-6514
WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information Path Disclosure via a /wp-json/oembed/1.0/embed?url= request, related to the "authorname":" substring...
CVE-2017-6514
CVE-2017-6514 affects WordPress 4.7.2 and allows remote attackers to obtain sensitive information (Path Disclosure) by exploiting a mis-handling of author listings in post metadata via a /wp-json/oembed/1.0/embed?url= request, related to the substring "author_name". Root cause: improper handling ...