WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress WP Guppy Plugin prior to version 1.3 is vulnerable to an information disclosure vulnerability that stems from the plugin not authorizing any user to call them in certain REST API endpoints. An attacker could exploit this vulnerability to cause sensitive information to be compromised.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress wp guppy plugin | lt | 1.3 |