Lucene search
+L

4 matches found

vulnrichment
vulnrichment
added 2024/08/09 9:30 a.m.11 views

CVE-2024-7413 Obfuscate Email <= 3.8.1 - Unauthenticated Full Path Disclosure

The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the...

5.3CVSS6.8AI score0.00482EPSS
Exploits0References2
cve
cve
added 2024/08/09 9:30 a.m.48 views

CVE-2024-7413

The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to 3.8.1 due to allow direct access to bootstrap.php with display_errors enabled. This enables unauthenticated information exposure (full path) that can assist other vulnerabilities; no exploit detai...

5.3CVSS5.1AI score0.00482EPSS
Exploits0References2
cvelist
cvelist
added 2024/08/09 9:30 a.m.23 views

CVE-2024-7413 Obfuscate Email <= 3.8.1 - Unauthenticated Full Path Disclosure

The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the...

5.3CVSS0.00482EPSS
Exploits0References2
patchstack
patchstack
added 2024/08/09 12:0 a.m.9 views

WordPress Obfuscate Email Plugin <= 3.8.1 is vulnerable to Sensitive Data Exposure

Software Obfuscate Email Type Plugin Vulnerable versions = 3.8.1 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-7413 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 734768c02b8e Credits stealthcopter Required...

5.3CVSS6.6AI score0.00482EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder