2 matches found
WordPress ContentStudio Plugin < 1.2.6 is vulnerable to Sensitive Data Exposure
Software ContentStudio Type Plugin Vulnerable versions 1.2.6 Fixed in 1.2.6 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-0557 Patch priority Medium CVSS severity Medium 5.3 Developer Claim ownership PSID fbef17e08b06 Credits Chloe Chamberland Requir...
CVE-2023-0557
The CVE-2023-0557 entry concerns the ContentStudio WordPress plugin up to version 1.2.5, where an unauthenticated attacker can obtain a nonce used for post creation, exposing sensitive information. Multiple connected sources confirm this nonce-disclosure vulnerability affecting ContentStudio on W...