Skip to content

Features
Pricing

Search

WordPress Plugin Vulnerabilities

Registration Forms < 3.8.4.1 - Sensitive Information Exposure via Log Files

Description

The plugin is vulnerable to Sensitive Information Exposure through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information about users contained in the exposed log files.

Affects Plugins

Fixed in 3.8.4.1

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/768730c1-a70e-432d-a234-4ce2b8aec424

Miscellaneous

Original Researcher

wesley (wcraft)

Verified

No

WPVDB ID

a43acac7-e4cd-421a-ab6f-567e0bd7fbb6

Timeline

Publicly Published

2025-02-20 (about 1 year ago)

Added

2025-02-20 (about 1 year ago)

Last Updated

2025-03-24 (about 11 months ago)

Other

Published

Title

Published

2019-11-19

Title

Jetpack 5.1-7.9 - Vulnerability in Shortcode Embed Code

Published

2014-08-01

Title

vTiger - CRM Lead Capture Unspecified

Published

2014-08-01

Title

Frontier Post - Publishing Posts Security Bypass

Published

2025-02-24

Title

Advanced Google reCaptcha < 1.28 - Built-in Math CAPTCHA Bypass

Published

2014-08-01

Title

Myriad 2.0 - dl-skin.php _mysite_download_skin Parameter Absolute Path Traversal Remote File Download

Vulnerabilities

WordPress
Plugins
Themes
Our Stats
Submit vulnerabilities

About

How it works
Pricing
WordPress plugin
Blog
Contact

For Developers

Status
API details
CLI scanner

Other

Privacy
Terms of service
Submission terms
Disclosure policy
Privacy Notice for California Users

In partnership with Jetpack

GitHub
Twitter
Facebook

An

endeavor

Subscribe Subscribed
- WPScan
- Already have a WordPress.com account? Log in now.