3 matches found
CVE-2024-2093
The VK All in One Expansion Unit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 9.95.0.1 via social meta tags. This makes it possible for unauthenticated attackers to view limited password protected content...
CVE-2024-2093
CVE-2024-2093 affects the VK All in One Expansion Unit WordPress plugin. All versions up to and including 9.95.0.1 are vulnerable to Sensitive Information Exposure via social meta tags, allowing unauthenticated attackers to view limited password‑protected content. Root cause: improper handling of...
WordPress VK All in One Expansion Unit Plugin <= 9.95.0.1 is vulnerable to Sensitive Data Exposure
Software VK All in One Expansion Unit Type Plugin Vulnerable versions = 9.95.0.1 Fixed in 9.96.0.0 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-2093 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d4653e32a362 Credits Krzyszt...