CVE-2024-0972 | BuddyPress Members Only Plugin up to 3.3.5 on WordPress REST API information disclosure

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability has been found in BuddyPress Members Only Plugin up to 3.3.5 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component REST API. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-0972. The attack can be launched remotely. There is no exploit available.

CVE-2024-0972 | BuddyPress Members Only Plugin up to 3.3.5 on WordPress REST API information disclosure

Post correlati

CVE-2023-26998 | NetScout nGeniusOne 6.3.4 Alert Configuration Page cross site scripting

CVE-2024-1698 | NotificationX Plugin up to 2.8.2 on WordPress sql injection

CVE-2024-22201 | Jetty up to 9.4.53/10.0.19/11.0.19/12.0.5 HTTP/2 SSL resource consumption

CVE-2024-46078 | itsourcecode Sports Management System 1.0 player.php delete_category id sql injection