4 matches found
CVE-2024-7413 Obfuscate Email <= 3.8.1 - Unauthenticated Full Path Disclosure
The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the...
CVE-2024-7413
The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to 3.8.1 due to allow direct access to bootstrap.php with display_errors enabled. This enables unauthenticated information exposure (full path) that can assist other vulnerabilities; no exploit detai...
CVE-2024-7413 Obfuscate Email <= 3.8.1 - Unauthenticated Full Path Disclosure
The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the...
WordPress Obfuscate Email Plugin <= 3.8.1 is vulnerable to Sensitive Data Exposure
Software Obfuscate Email Type Plugin Vulnerable versions = 3.8.1 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-7413 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 734768c02b8e Credits stealthcopter Required...