RSS   Vulnerabilities for 'Wordpress mobile pack'   RSS

2018-10-01
 
CVE-2015-9269

CWE-200
 

 
The export/content.php exportarticle feature in the wordpress-mobile-pack plugin before 2.1.3 2015-06-03 for WordPress allows remote attackers to obtain sensitive information because the content of a privately published post is sent in JSON format.

 
2014-08-29
 
CVE-2014-5337

CWE-264
 

 
The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top