4 matches found
CVE-2024-6557
The SchedulePress – Auto Post & Publish, Auto Social Share, Schedule Posts with Editorial Calendar & Missed Schedule Post Publisher plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 5.1.3. This is due the plugin utilizing the wpdeveloper library and...
CVE-2024-6557 SchedulePress <= 5.1.3 - Unauthenticated Full Path Disclosure
The SchedulePress – Auto Post & Publish, Auto Social Share, Schedule Posts with Editorial Calendar & Missed Schedule Post Publisher plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 5.1.3. This is due the plugin utilizing the wpdeveloper library and...
CVE-2024-6557 SchedulePress <= 5.1.3 - Unauthenticated Full Path Disclosure
The SchedulePress – Auto Post & Publish, Auto Social Share, Schedule Posts with Editorial Calendar & Missed Schedule Post Publisher plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 5.1.3. This is due the plugin utilizing the wpdeveloper library and...
WordPress SchedulePress Plugin <= 5.1.3 is vulnerable to Sensitive Data Exposure
Software SchedulePress Type Plugin Vulnerable versions = 5.1.3 Fixed in 5.1.4 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6557 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 4befd0cb74c1 Credits stealthcopter Required...