CVE-2024-0972 | BuddyPress Members Only Plugin up to 3.3.5 on WordPress REST API information disclosure

Inserito da Angelo Barbosa | Giu 5, 2024 | CVE

A vulnerability has been found in BuddyPress Members Only Plugin up to 3.3.5 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the component REST API. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-0972. The attack can be launched remotely. There is no exploit available.

CVE-2024-0972 | BuddyPress Members Only Plugin up to 3.3.5 on WordPress REST API information disclosure

Post correlati

CVE-2024-6791 | NI VeriStand up to 24.2 vsmodel Loader path traversal

CVE-2024-41909 | Apache MINA SSHD up to 2.11.0 Terrapin integrity check (Issue 445)

CVE-2024-2852 | Tenda AC15 15.03.20_multi saveParentControlInfo urls stack-based overflow

CVE-2024-35204 | Veritas System Recovery up to 23.2 Recovery Folder permission