PT-2026-57418 · WordPress · Context Blog
Ryoma Nishioka
·
Published
2026-07-11
·
Updated
2026-07-11
·
CVE-2026-6801
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Context Blog theme for WordPress versions prior to 1.3.6
Description
Sensitive information exposure occurs via the
context blog modal popup component. This flaw allows unauthenticated attackers to extract the content of posts that are password-protected.Recommendations
Update the Context Blog theme to a version newer than 1.3.5.
As a temporary mitigation, restrict access to the
context blog modal popup functionality.Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Context Blog