Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:26754
HistorySep 16, 2020 - 2:17 a.m.

Information Disclosure

2020-09-1602:17:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
wordpress
vulnerability
information disclosure
comment-template.php
password-protected posts

EPSS

0.001

Percentile

38.7%

JSON

johnpbloch/wordpress-core is vulnerable to information disclosure. The vulnerability exists in the get_comment_excerpt function in comment-template.php because the comments from password-protected (non-public) posts and pages are not restricted from viewing under certain conditions.

Related

wpvulndb 1
cvelist 1
nvd 1
osv 5
cve 1
debiancve 1
ubuntucve 1
prion 1
openvas 4
wpvulndb
wpvulndb
WordPress < 5.4.2 - Disclosure of Password-Protected Page/Post Comments
2020-06-11 00:00:00
cvelist
cvelist
CVE-2020-25286
2020-09-13 17:48:09
nvd
nvd
CVE-2020-25286
2020-09-13 18:15:10
osv
osv
BIT-wordpress-2020-25286
2024-03-06 11:11:56
BIT-wordpress-multisite-2020-25286
2024-03-06 11:11:47
CVE-2020-25286
2020-09-13 18:15:10
cve
cve
CVE-2020-25286
2020-09-13 18:15:10
debiancve
debiancve
CVE-2020-25286
2020-09-13 18:15:10
ubuntucve
ubuntucve
CVE-2020-25286
2020-09-13 00:00:00
prion
prion
Code injection
2020-09-13 18:15:00
openvas
openvas
WordPress Multiple Vulnerabilities (Jun 2020) - Windows
2020-06-15 00:00:00
Debian: Security Advisory (DSA-4709-1)
2020-06-24 00:00:00
WordPress Multiple Vulnerabilities (Jun 2020) - Linux
2020-06-15 00:00:00

EPSS

0.001

Percentile

38.7%

JSON
Related for VERACODE:26754
wpvulndb1cvelist1nvd1osv5cve1debiancve1ubuntucve1prion1openvas4