Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.8 views

CVE-2022-0384

The Video Conferencing with Zoom WordPress plugin before 3.8.17 does not have authorisation in its vczapigetwpusers AJAX action, allowing any authenticated users, such as subscriber to download the list of email addresses registered on the blog...

4.3CVSS6.5AI score0.0099EPSS
Exploits2References1
NVD
NVD
added 2022/03/07 9:15 a.m.25 views

CVE-2022-0384

The Video Conferencing with Zoom WordPress plugin before 3.8.17 does not have authorisation in its vczapigetwpusers AJAX action, allowing any authenticated users, such as subscriber to download the list of email addresses registered on the blog...

4.3CVSS0.0099EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2022/03/07 9:15 a.m.6 views

CVE-2022-0384

The Video Conferencing with Zoom WordPress plugin before 3.8.17 does not have authorisation in its vczapigetwpusers AJAX action, allowing any authenticated users, such as subscriber to download the list of email addresses registered on the blog...

4.3CVSS5.5AI score0.0099EPSS
Exploits2References3
Cvelist
Cvelist
added 2022/03/07 8:16 a.m.29 views

CVE-2022-0384 Video Conferencing with Zoom < 3.8.17 - E-mail Address Disclosure

The Video Conferencing with Zoom WordPress plugin before 3.8.17 does not have authorisation in its vczapigetwpusers AJAX action, allowing any authenticated users, such as subscriber to download the list of email addresses registered on the blog...

4.9AI score0.0099EPSS
Exploits2References2
CVE
CVE
added 2022/03/07 8:16 a.m.101 views

CVE-2022-0384

The CVE-2022-0384 entry applies to the Video Conferencing with Zoom WordPress plugin prior to version 3.8.17. The vulnerability arises from lack of authorization in the vczapi_get_wp_users AJAX action, allowing any authenticated user (e.g., subscribers) to download the blog’s registered email add...

4.3CVSS4.5AI score0.0099EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder