PT-2024-25848 · WordPress · Scribit Gdpr Compliance
Catfather
·
Published
2024-05-06
·
Updated
2024-05-06
·
CVE-2024-34388
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Scribit GDPR Compliance versions 1.2.5 and earlier
Description
The issue is related to exposure of sensitive information to an unauthorized actor due to improper access control. This affects the Scribit GDPR Compliance plugin on WordPress.
Recommendations
For versions 1.2.5 and earlier, upgrade the plugin to the latest version and review plugin settings for any misconfigurations.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Scribit Gdpr Compliance