Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mardi 6 avril 2021

User Profile Picture Plugin up to 2.4.x on WordPress REST API Endpoint get_users information disclosure

A vulnerability was found in User Profile Picture Plugin up to 2.4.x on WordPress (WordPress Plugin). It has been rated as problematic. Affected by this issue is the function get_users of the component REST API Endpoint. Upgrading to version 2.5.0 eliminates this vulnerability.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 25

x

Événements SSI