Описание
The Open Graph plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.2 via the 'opengraph_default_description' function. This makes it possible for unauthenticated attackers to extract sensitive data including partial content of password-protected blog posts.
Ссылки
- Product
- Patch
- Third Party Advisory
- Product
- Patch
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.11.3 (исключая)
cpe:2.3:a:willnorris:open_graph:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 63%
0.00461
Низкий
5.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 5.3
github
больше 1 года назад
The Open Graph plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.2 via the 'opengraph_default_description' function. This makes it possible for unauthenticated attackers to extract sensitive data including partial content of password-protected blog posts.
EPSS
Процентиль: 63%
0.00461
Низкий
5.3 Medium
CVSS3
Дефекты
NVD-CWE-noinfo