10 Jan 2022
Vulnérabilité CVE-2021-24948 CVE Vulnerability
The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not validate the qvquery parameter of the tp_get_dl_post_info_ajax AJAX action, which could allow unauthenticated users to retrieve sensitive information, such as private and draft posts (CVSS:0.0) (Last Update:2022-01-10)
Vulnerability Details : The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not validate the qvquery parameter of the tp_get_dl_post_info_ajax AJAX action, which could allow unauthenticated users to retrieve sensitive information, such as private and draft posts Publish Date : 2022-01-10 Last Update Date : 2022-01-10 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-24948
- References For CVE-2021-24948
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-24948There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |