Lucene search
WpvulndbWPVDB-ID:3ED9FA82-DB22-48D6-B2F7-0AB8DF45A068HistoryJun 28, 2020 - 12:00 a.m.
ACF to REST API < 3.3.0 - Unauthenticated Arbitrary wp_options Disclosure
2020-06-2800:00:00
wpscan.com
11
EPSS
0.018
Percentile
88.3%
The plugin does not properly check for authorisation and allowed options to be retrieved from the wp-json/acf/v3/options/ endpoint. This could allow unauthenticated attacker to retrieve arbitrary values from the wp_options table, such as a list of active plugins.
PoC
List all active plugins of the blog: GET /wp-json/acf/v3/options/a?id=active&field;=plugins
Related
cvelist
cvelist
CVE-2020-13700
2020-06-24 14:25:30
patchstack
patchstack
nvd
nvd
CVE-2020-13700
2020-06-24 15:15:11
prion
prion
Cross site request forgery (csrf)
2020-06-24 15:15:00
osv
osv
acf-to-rest-api plugin insecure direct object reference (IDOR) via permalink manipulation
2022-05-24 17:21:35
CVE-2020-13700
2020-06-24 15:15:11
wpexploit
wpexploit
ACF to REST API < 3.3.0 - Unauthenticated Arbitrary wp_options Disclosure
2020-06-28 00:00:00
gitlab
gitlab
Information Exposure
2020-06-24 00:00:00
nuclei
nuclei
WordPresss acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference
2021-03-10 04:14:33
github
github
openvas
openvas
WordPress ACF to REST API Plugin <= 3.1.0 IDOR Vulnerability
2021-04-13 00:00:00
cve
cve
CVE-2020-13700
2020-06-24 15:15:11