cve/CVE-2024-11090.md at cb00e1339f55f9551dd27140c9ce222c7fab7101

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.2.13 via the WordPress core search feature. This makes it possible for unauthenticated attackers to extract sensitive data from posts that have been restricted to higher-level roles such as administrator.

POC

Reference

No PoCs from references.

Github

https://github.com/cyb3r-w0lf/nuclei-template-collection
https://github.com/francescocarlucci/wp-content-exfiltrator

1018 B Raw Blame History Unescape Escape

CVE-2024-11090

Description

POC

Reference

Github

1018 B

Raw Blame History