CVE-2024-25591

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 17, 2024

CWE ID 200

Summary

CVE-2024-25591 is a vulnerability affecting the Benjamin Rojas WP Editor, where sensitive information is exposed to unauthorized actors. This issue impacts versions of the plugin from n/a through 1.2.7. An attacker can exploit this vulnerability to gain unauthorized access to data, potentially leading to confidentiality breaches. Users are advised to update the plugin to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ucp9Oa
https://www.cve.org/CVERecord?id=CVE-2024-25591
https://nvd.nist.gov/vuln/detail/CVE-2024-25591

Back to Vulnerability Database

CVE-2024-25591

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations