Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-24997
HistoryDec 27, 2021 - 11:15 a.m.

Information disclosure

2021-12-2711:15:00
PRIOn knowledge base
www.prio-n.com
2

6.3 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.5%

JSON

The WP Guppy WordPress plugin before 1.3 does not have any authorisation in some of the REST API endpoints, allowing any user to call them and could lead to sensitive information disclosure, such as usernames and chats between users, as well as be able to send messages as an arbitrary user

CPENameOperatorVersion
wp_guppylt1.3

Related

patchstack 1
nvd 1
wpvulndb 1
cve 1
nuclei 1
cvelist 1
wpexploit 1
cnvd 1
patchstack
patchstack
WordPress WP Guppy plugin <= 1.2 - Sensitive Information Disclosure vulnerability
2021-11-23 00:00:00
nvd
nvd
CVE-2021-24997
2021-12-27 11:15:09
wpvulndb
wpvulndb
WP Guppy < 1.3 - Sensitive Information Disclosure
2021-11-22 00:00:00
cve
cve
CVE-2021-24997
2021-12-27 11:15:09
nuclei
nuclei
WordPress Guppy <=1.1 - Information Disclosure
2021-12-13 20:52:26
cvelist
cvelist
CVE-2021-24997 WP Guppy < 1.3 - Sensitive Information Disclosure
2021-12-27 10:33:26
wpexploit
wpexploit
WP Guppy < 1.3 - Sensitive Information Disclosure
2021-11-22 00:00:00
cnvd
cnvd
WordPress WP Guppy Plugin Information Disclosure Vulnerability
2021-12-28 00:00:00

6.3 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.5%

JSON
Related for PRION:CVE-2021-24997
patchstack1nvd1wpvulndb1cve1nuclei1cvelist1wpexploit1cnvd1