Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/26 12:40 a.m.9 views

CVE-2025-3104

The WP STAGING Pro WordPress Backup Plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 6.1.2 due to missing capability checks on the getOutdatedPluginsRequest function. This makes it possible for unauthenticated attackers to reveal outdated installed...

5.3CVSS6.8AI score0.0029EPSS
Exploits0References1
Circl
Circl
added 2025/04/16 8:55 a.m.13 views

CVE-2025-3104

creationtimestamp| type| source ---|---|--- 2025-04-16 08:55:59+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12000 2025-04-16 10:43:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmwfusila52c 2025-04-16 13:31:37+00:00| seen| https://t.me/cvedetector/23083...

5.3CVSS7.8AI score0.0029EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/16 8:22 a.m.8 views

CVE-2025-3104 WP Staging Pro <= 6.1.2 - Unauthenticated Information Exposure via getOutdatedPluginsRequest Function

The WP STAGING Pro WordPress Backup Plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 6.1.2 due to missing capability checks on the getOutdatedPluginsRequest function. This makes it possible for unauthenticated attackers to reveal outdated installed...

5.3CVSS5.4AI score0.0029EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/04/16 8:22 a.m.39 views

CVE-2025-3104 WP Staging Pro <= 6.1.2 - Unauthenticated Information Exposure via getOutdatedPluginsRequest Function

The WP STAGING Pro WordPress Backup Plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 6.1.2 due to missing capability checks on the getOutdatedPluginsRequest function. This makes it possible for unauthenticated attackers to reveal outdated installed...

5.3CVSS0.0029EPSS
Exploits0References2
CVE
CVE
added 2025/04/16 8:22 a.m.65 views

CVE-2025-3104

CVE-2025-3104 affects the WP STAGING Pro WordPress Backup Plugin for WordPress (versions up to 6.1.2). The issue arises from missing capability checks in getOutdatedPluginsRequest(), enabling unauthenticated disclosure of outdated installed plugins. Impact is information exposure; CVSS 3.1 base s...

5.3CVSS5.2AI score0.0029EPSS
Exploits0References2
Rows per page
Query Builder