11 matches found
Exploit for CVE-2023-5561
PoC CVE-2023-5561 - WordPress User Email Disclosure Descri...
Exploit for CVE-2023-5561
CVE-2023-5561-POC-Updated This repository contains a modified...
Debian dsa-5685 : wordpress - security update
The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5685 advisory. - WordPress Core is vulnerable to Directory Traversal in versions up to, and including, 6.2, via the wplang' parameter. This allows unauthenticated attackers...
[SECURITY] [DSA 5685-1] wordpress security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5685-1 [email protected] https://www.debian.org/security/ Markus Koschany May 08, 2024 https://www.debian.org/security/faq -...
[SECURITY] [DLA 3658-1] wordpress security update
Debian LTS Advisory DLA-3658-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 20, 2023 https://wiki.debian.org/LTS Package : wordpress Version : 5.0.20+dfsg1-0+deb10u1 CVE ID : CVE-2023-5561 CVE-2023-39999 Several security vulnerabilities have been...
CVE-2023-5561
creationtimestamp| type| source ---|---|--- 2023-10-17 00:32:25+00:00| seen| https://t.me/cibsecurity/72357 2023-11-26 03:54:33+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5957 2023-11-26 04:04:01+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/5958 2025-03-05...
CVE-2023-5561
WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack...
CVE-2023-5561 WordPress < 6.3.2 - Unauthenticated Post Author Email Disclosure
WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack...
CVE-2023-5561
Summary of CVE-2023-5561 findings : WordPress Core is vulnerable to a Sensitive Information Exposure via the REST User endpoint. Affected range: WordPress 4.7.0 through 6.3.1. The issue allows unauthenticated attackers to discern the email addresses of users who have published posts, by querying ...
CVE-2023-5561
WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack...
WordPress Multiple Vulnerabilities (Oct 2023) - Linux
WordPress is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescripti...