Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/07/13 6:22 a.m.7 views

CVE-2025-2942

The Order Delivery Date WordPress plugin before 12.6.0 discloses arbitrary post title such as from draft and private posts via an unauthenticated AJAX action, allowing attackers to retrieve such information...

4.3CVSS7.4AI score0.00255EPSS
Exploits1References1
Patchstack
Patchstack
added 2025/07/11 9:4 p.m.9 views

WordPress Order Delivery Date Pro for WooCommerce plugin < 12.6.0 - Unauthenticated Arbitrary Post Title Disclosure vulnerability

Unauthenticated Arbitrary Post Title Disclosure vulnerability discovered by Erwan LR WPScan in WordPress Plugin Order Delivery Date for WP e-Commerce versions 12.6.0...

4.3CVSS6.8AI score0.00255EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/11 6:0 a.m.3 views

CVE-2025-2942 Order Delivery Date Pro for WooCommerce < 12.6.0 - Unauthenticated Arbitrary Post Title Disclosure

The Order Delivery Date WordPress plugin before 12.6.0 discloses arbitrary post title such as from draft and private posts via an unauthenticated AJAX action, allowing attackers to retrieve such information...

7.1AI score0.00255EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/07/11 6:0 a.m.10 views

CVE-2025-2942 Order Delivery Date Pro for WooCommerce < 12.6.0 - Unauthenticated Arbitrary Post Title Disclosure

The Order Delivery Date WordPress plugin before 12.6.0 discloses arbitrary post title such as from draft and private posts via an unauthenticated AJAX action, allowing attackers to retrieve such information...

0.00255EPSS
Exploits1References1
Rows per page
Query Builder