Lucene search
WpvulndbWPVDB-ID:7CCC11A6-D5E1-4D13-BDF4-068AA4B567C6HistoryMar 04, 2024 - 12:00 a.m.
JM Twitter Cards < 14.1.0 - Password Protected Post Access
2024-03-0400:00:00
wpscan.com
8
twitter cards
vulnerability
information exposure
meta description
password protected post.
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7
Confidence
High
EPSS
0
Percentile
9.0%
Description The plugin is vulnerable to Information Exposure via the meta description data, allowing unauthenticated attackers to view password protected post content when viewing the page source.
Related
prion
prion
Design/Logic Flaw
2024-03-05 02:15:00
nvd
nvd
CVE-2024-1769
2024-03-05 02:15:27
cve
cve
CVE-2024-1769
2024-03-05 02:15:27
vulnrichment
vulnrichment
CVE-2024-1769
2024-03-05 01:56:03
cvelist
cvelist
CVE-2024-1769
2024-03-05 01:56:03
wordfence
wordfence
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7
Confidence
High
EPSS
0
Percentile
9.0%
Related for WPVDB-ID:7CCC11A6-D5E1-4D13-BDF4-068AA4B567C6