7 matches found
CVE-2025-0466
The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak senseiemail and senseimessage Information...
CVE-2025-0466
creationtimestamp| type| source ---|---|--- 2025-02-04 06:16:21+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhdftcykzz2b 2025-02-04 06:43:15+00:00| seen| https://infosec.exchange/users/cve/statuses/113944257770986763 2025-02-04 08:02:03+00:00| seen|...
CVE-2025-0466
The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak senseiemail and senseimessage Information...
CVE-2025-0466
CVE-2025-0466 affects the WordPress plugin Sensei LMS (pre-4.24.4). The issue is inadequate protection of certain REST API routes, allowing unauthenticated access to leak sensei_email and sensei_message information. Impact is limited to disclosure of these fields via vulnerable REST endpoints, as...
CVE-2025-0466 Sensei LMS < 4.24.4 - Unauthenticated sensei_email/sensei_message Disclosure
The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak senseiemail and senseimessage Information...
CVE-2025-0466 Sensei LMS < 4.24.4 - Unauthenticated sensei_email/sensei_message Disclosure
The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak senseiemail and senseimessage Information...
CVE-2025-0466 Sensei LMS < 4.24.4 - Unauthenticated sensei_email/sensei_message Disclosure
The Sensei LMS WordPress plugin before 4.24.4 does not properly protect some its REST API routes, allowing unauthenticated attackers to leak senseiemail and senseimessage Information...