WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Document Embedder < 1.7.5 - Unauthenticated Arbitrary Private/Draft Post Title Disclosure

Description

The plugin contains a REST endpoint, which could allow unauthenticated users to enumerate the title of arbitrary private and draft posts.

Proof of Concept

https://example.com/wp-json/doc/v1/single/509 (509 being the ID of a private/draft Post)

Affects Plugins

document-emberdder
Fixed in version 1.7.5

References

CVE
CVE-2021-24775

Classification

Type

SENSITIVE DATA DISCLOSURE

OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200

Miscellaneous

Original Researcher

apple502j

Submitter

apple502j

Verified

Yes

WPVDB ID
c6f24afe-d273-4f87-83ca-a791a385b06b

Timeline

Publicly Published

2022-01-03 (about 1 years ago)

Added

2022-01-03 (about 1 years ago)

Last Updated

2022-04-12 (about 9 months ago)

Our Other Services

WPScan WordPress Security Plugin