Lucene search
+L

4 matches found

patchstack
patchstack
added 2023/04/11 12:0 a.m.19 views

WordPress WP Tiles Plugin <= 1.1.2 is vulnerable to Sensitive Data Exposure

Software WP Tiles Type Plugin Vulnerable versions = 1.1.2 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-1426 Patch priority Medium CVSS severity Medium 4.3 Developer Claim ownership PSID 0ecd1ecdc31a Credits Erwan LR WPScan Required...

6.5CVSS6.5AI score0.00795EPSS
Exploits2References2Affected Software1
circl
circl
added 2023/04/10 6:32 p.m.5 views

CVE-2023-1426

creationtimestamp| type| source ---|---|--- 2023-04-10 18:32:50+00:00| seen| https://t.me/cibsecurity/61748...

6.5CVSS6.3AI score0.00795EPSS
Exploits2References1
vulnrichment
vulnrichment
added 2023/04/10 1:17 p.m.7 views

CVE-2023-1426 WP Tiles <= 1.1.2 - Subscriber+ Draft/Private Post Title Disclosure

The WP Tiles WordPress plugin through 1.1.2 does not ensure that posts to be displayed are not draft/private, allowing any authenticated users, such as subscriber to retrieve the titles of draft and privates posts for example. AN attacker could also retrieve the title of any other type of post...

6.4AI score0.00795EPSS
Exploits2References1
cve
cve
added 2023/04/10 1:17 p.m.74 views

CVE-2023-1426

CVE-2023-1426 affects the WordPress plugin WP Tiles up to version 1.1.2. The vulnerability arises because the plugin’s display logic does not ensure that posts shown are not drafts or private, allowing any authenticated user (e.g., subscribers) to retrieve the titles of draft/private posts and po...

6.5CVSS6.3AI score0.00795EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder