RSS   Podatności dla 'Document embedder'   RSS

2022-02-01
 
CVE-2021-24775

CWE-668
 

 
The Document Embedder WordPress plugin before 1.7.5 contains a REST endpoint, which could allow unauthenticated users to enumerate the title of arbitrary private and draft posts.

 
 
CVE-2021-24868

CWE-668
 

 
The Document Embedder WordPress plugin before 1.7.9 contains a AJAX action endpoint, which could allow any authenticated user, such as subscriber to enumerate the title of arbitrary private and draft posts.

 

 >>> Vendor: Bplugins 5 Produkty
Streamcast radio player
Polo video gallery
Easy twitter feed
Html5 audio player
Document embedder


Copyright 2024, cxsecurity.com

 

Back to Top