3 matches found
CVE-2024-1452
The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.2 via Query Loop. This makes it possible for authenticated attackers, with contributor access and above, to see contents of posts and pages in draft or private status ...
CVE-2024-1452
CVE-2024-1452 affects the WordPress GenerateBlocks plugin. The vulnerability exists in the Query Loop and allows authenticated users with at least Contributor access to view content of posts/pages (including drafts, private, or scheduled) due to a sensitive information exposure in versions up to ...
WordPress GenerateBlocks Plugin <= 1.8.2 is vulnerable to Sensitive Data Exposure
Software GenerateBlocks Type Plugin Vulnerable versions = 1.8.2 Fixed in 1.8.3 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1452 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 17b91c2bc914 Credits Webbernaut Required privile...