Skip to content

Features
Pricing

Search

WordPress Plugin Vulnerabilities

Relevanssi Pro < 2.25 - Unauthenticated Sensitive Information Exposure

Description

The plugin is vulnerable to Sensitive Information Exposure, allowing unauthenticated attackers to extract sensitive user or configuration data.

Affects Plugins

relevanssi-premium

Fixed in 2.25

References

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/550872c8-3663-48fa-ab3f-f90351f3e169

Classification

Type

SENSITIVE DATA DISCLOSURE

OWASP top 10

A3: Sensitive Data Exposure

CWE

CVSS

Miscellaneous

Verified

No

WPVDB ID

2318f92b-3502-450f-a728-00c0eb13f804

Timeline

Publicly Published

2024-01-31 (about 3 months ago)

Added

2024-04-02 (about 1 months ago)

Last Updated

2024-04-02 (about 1 months ago)

Other

Published

Title

Published

2024-04-11

Title

Citadela Listing <= 5.18.1 - Unauthenticated Sensitive Information Exposure

Published

2024-03-28

Title

Paid Memberships Pro – Payfast Gateway Add On < 1.4.2 - Unauthenticated Information Exposure

Published

2023-09-11

Title

WooCommerce < 7.0.1 - Authenticated(Shop Manager+) Sensitive Information Exposure

Published

2023-06-08

Title

Metform Elementor Contact Form Builder < 3.3.2 - Multiple Subscriber+ Sensitive Information Disclosure Issues

Published

2023-11-06

Title

Restrict Content < 3.2.8 - Information Exposure via legacy log file

Vulnerabilities

WordPress
Plugins
Themes
Our Stats
Submit vulnerabilities

About

How it works
Pricing
WordPress plugin
Blog
Contact

For Developers

Status
API details
CLI scanner

Other

Privacy
Terms of service
Submission terms
Disclosure policy
Privacy Notice for California Users

In partnership with Jetpack

GitHub
Twitter
Facebook

An

endeavor

Subscribe Subscribed
- WPScan
- Already have a WordPress.com account? Log in now.