RSS   Vulnerabilities for 'Find my blocks'   RSS

2021-10-18
 
CVE-2021-24677

CWE-862
 

 
The Find My Blocks WordPress plugin before 3.4.0 does not have authorisation checks in its REST API, which could allow unauthenticated users to enumerate private posts' titles.

 


Copyright 2024, cxsecurity.com

 

Back to Top