The WordPress plugin Be POPIA Compliant exposed sensitive information to unauthenticated users consisting of site visitors emails and usernames via an API route, in versions up to an including 1.1.5.
References
Configurations
History
24 Oct 2023, 19:50
Type | Values Removed | Values Added |
---|---|---|
First Time |
Web-x be Popia Compliant
Web-x |
|
References | (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/0fcdd6b5-a273-4916-a894-a753be0a7921?source=cve - Third Party Advisory | |
CPE | cpe:2.3:a:web-x:be_popia_compliant:*:*:*:*:*:wordpress:*:* | |
CWE | NVD-CWE-noinfo |
20 Oct 2023, 16:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2022-04-19 21:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-1186
Mitre link : CVE-2022-1186
CVE.ORG link : CVE-2022-1186
JSON object : View
Products Affected
web-x
- be_popia_compliant
CWE