WordPress Plugin Vulnerabilities

wpDiscuz < 7.3.12 - Sensitive Information Disclosure

Description

The plugin is affected by a sensitive information disclosure

Affects Plugins

Plugin icon
wpdiscuz
Fixed in 7.3.12

References

CVE
CVE-2022-23984

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
3.7 (low)

Miscellaneous

Original Researcher
Muhammad Daffa
Verified
No
WPVDB ID
027e6ef8-39d8-4fa9-957f-f53ee7175c0a

Timeline

Publicly Published
2022-02-10 (about 4 years ago)
Added
2022-02-21 (about 4 years ago)
Last Updated
2022-04-10 (about 4 years ago)

Other

Published
Title
Published
2025-08-28
Title
Elementor Addon Elements < 1.14.5 - Authenticated (Contributor+) Information Exposure
Published
2025-08-27
Title
Xagio SEO < 7.1.0.6 - Unauthenticated Sensitive Information Exposure via Unprotected Back-Up Files
Published
2025-01-07
Title
140+ Widgets | Xpro Addons For Elementor – FREE < 1.4.6.3 - Authenticated (Contributor+) Post Disclosure via Post Duplication
Published
2023-12-27
Title
Database Cleaner < 0.9.9 - Sensitive Information Exposure via Log File
Published
2026-03-04
Title
PeproDev Ultimate Invoice < 2.2.6 - Unauthenticated Invoice Archive Download