Lucene search
K

503 matches found

Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.20 views

WordPress 5.4.x < 5.4.1 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.23 views

WordPress 3.9.x < 3.9.31 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.23 views

WordPress 4.9.x < 4.9.14 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.22 views

WordPress 3.8.x < 3.8.33 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.17 views

WordPress 4.3.x < 4.3.23 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/18 12:0 a.m.28 views

WordPress 3.7.x < 3.7.33 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - Six cross-site scripting XSS vulnerabilities exist due to improper validation of user-supplied input. An remote attacker can exploit these, by convincing a user to click a...

8.7CVSS6AI score0.13625EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2020/05/11 12:0 a.m.12 views

Fedora 31 : wordpress (2020-7701f49327)

WordPress 5.4.1 Security Updates Seven security issues affect WordPress versions 5.4 and earlier. If you havent yet updated to 5.4, all WordPress versions since 3.7 have also been updated to fix the following security issues : - Props to Muaz Bin Abdus Sattar and Jannes who both independently...

5.4AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/05/11 12:0 a.m.22 views

Fedora 30 : wordpress (2020-fa71ca92f8)

WordPress 5.4.1 Security Updates Seven security issues affect WordPress versions 5.4 and earlier. If you havent yet updated to 5.4, all WordPress versions since 3.7 have also been updated to fix the following security issues : - Props to Muaz Bin Abdus Sattar and Jannes who both independently...

5.4AI score
Exploits0References1
Veracode
Veracode
added 2020/05/04 6:25 a.m.33 views

Private Posts Disclosure

Wordpress is vulnerable to private posts disclosure. The posts which were previously set to public can be leaked under some specific conditions...

7.5CVSS1.7AI score0.02334EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2020/04/30 11:15 p.m.4 views

DEBIAN-CVE-2020-11028

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release 5.3.3, 5.2.6, 5.1.5, 5.0.9,...

7.5CVSS7.5AI score0.02334EPSS
Exploits0References1
OSV
OSV
added 2020/04/30 11:15 p.m.27 views

CVE-2020-11028

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release 5.3.3, 5.2.6, 5.1.5, 5.0.9,...

7.5CVSS6.6AI score
Exploits0References4
OSV
OSV
added 2020/04/30 11:15 p.m.6 views

UBUNTU-CVE-2020-11028

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release 5.3.3, 5.2.6, 5.1.5, 5.0.9,...

7.5CVSS7.2AI score0.02334EPSS
Exploits0References4
Cvelist
Cvelist
added 2020/04/30 10:15 p.m.42 views

CVE-2020-11028 Unauthenticated disclosure of certain private posts in WordPress

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release 5.3.3, 5.2.6, 5.1.5, 5.0.9,...

5.8CVSS7.8AI score0.02334EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2020/04/30 10:15 p.m.55 views

CVE-2020-11028

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been patched in version 5.4.1, along with all the previously affected versions via a minor release 5.3.3, 5.2.6, 5.1.5, 5.0.9,...

7.5CVSS3.7AI score0.02334EPSS
Exploits0
WPVulnDB
WPVulnDB
added 2020/04/30 12:0 a.m.413 views

WordPress < 5.4.1 - Unauthenticated Users View Private Posts

Description This could have allowed unauthenticated users to view private posts by manipulating time and date queries...

7.5CVSS6.4AI score0.02334EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2020/04/30 12:0 a.m.12 views

PT-2020-3603 · WordPress · Wordpress

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.4.1 WordPress versions 5.3.3, 5.2.6, 5.1.5, 5.0.9, 4.9.14, 4.8.13, 4.7.17, 4.6.18, 4.5.21, 4.4.22, 4.3.23, 4.2.27, 4.1.30, 4.0.30, 3.9.31, 3.8.33, 3.7.33 Description: In affected versions of WordPress, some priva...

9.8CVSS7.3AI score0.4375EPSS
Exploits16References74
Veracode
Veracode
added 2019/10/18 8:25 a.m.39 views

Unauthenticated Access To Restricted Resources

wordpress allows unauthenticated access to restricted resources. This vulnerability could allow unauthenticated users to view private or draft posts that would otherwise be restricted...

5.3CVSS5.3AI score0.36503EPSS
Exploits2References9Affected Software1
wpexploit
wpexploit
added 2019/10/15 12:0 a.m.486 views

WordPress <= 5.2.3 - Unauthenticated View Private/Draft Posts

Description This vulnerability could allow an unauthenticated user to view private or draft posts due to an issue within WPQuery. http://wordpress.local/?static=1&order=asc...

5.3CVSS7.3AI score0.36503EPSS
Exploits2References4
HackRead
HackRead
added 2018/06/08 7:26 p.m.50 views

Facebook bug exposed private posts of 14 million users to public

By Carolina The social media giant Facebook said on Thursday that a critical bug This is a post from HackRead.com Read the original post: Facebook bug exposed private posts of 14 million users to public...

2.5AI score
Exploits0
ThreatPost
ThreatPost
added 2018/06/08 3:25 p.m.17 views

Facebook Software Bug Made Some Private Posts Public: 14 Million Affected

A Facebook software bug in May switched the “suggested audience” for posts to “public” for 14 millions of users. The glitch meant Facebook users who though they were sharing content with just friends or small groups actually made their posts available to the general public. The incident is the...

1.2AI score
Exploits0References4
Rows per page
Query Builder