7 matches found
CVE-2024-7416
The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.7. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the ful...
WordPress plugin Reveal Template 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-7416 Reveal Template <= 3.7 - Unauthenticated Full Path Disclosure
The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.7. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the ful...
CVE-2024-7416
Technical details (affected versions, root cause, exploit information, and patch/FIX specifics) are not provided in the supplied documents. Monitor for updates and official advisories for precise guidance.
CVE-2024-7416 Reveal Template <= 3.7 - Unauthenticated Full Path Disclosure
The Reveal Template plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.7. This is due to the plugin allowing direct access to the bootstrap.php file which has displayerrors on. This makes it possible for unauthenticated attackers to retrieve the ful...
WordPress Reveal Template plugin <= 3.7 - Unauthenticated Full Path Disclosure vulnerability
Unauthenticated Full Path Disclosure vulnerability discovered by stealthcopter in WordPress Plugin Reveal Template versions = 3.7...
WordPress Reveal Template Plugin <= 3.7 is vulnerable to Sensitive Data Exposure
Software Reveal Template Type Plugin Vulnerable versions = 3.7 Fixed in N/A OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-7416 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a9241e753d7d Credits stealthcopter Required privile...