Lucene search
K

3 matches found

WPVulnDB
WPVulnDB
added 2024/06/13 12:0 a.m.13 views

Widget Options - Extended <= 5.1.0 & Widget Options <= 4.0.1 - Authenticated (Subscriber+) Information Disclosure

Description The Widget Options - Extended plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to 5.1.3 exclusive for Widget Options - Extended and all versions up to, and including, 4.0.1 for Widget Options. This makes it possible for unauthenticated attackers ...

6.5CVSS6.3AI score0.00422EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/06 12:0 a.m.12 views

WordPress Widget Options Plugin <= 4.0.1 is vulnerable to Sensitive Data Exposure

Software Widget Options Type Plugin Vulnerable versions = 4.0.1 Fixed in 4.0.2 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-35690 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 47a57087030e Credits Dave Jong Patchstack Require...

6.2AI score0.00294EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/06/06 12:0 a.m.20 views

WordPress Widget Options Plugin <= 4.0.1 is vulnerable to Sensitive Data Exposure

Software Widget Options Type Plugin Vulnerable versions = 4.0.1 Fixed in 4.0.2 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-35690 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID d20ab85a5efb Credits Dave Jong Patchstack...

6.2AI score0.00294EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder