The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Sensitive Data Exposure in versions before 2.6.1 via the ~/listingpro-plugin/functions.php file. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, full names, email addresses, phone numbers, physical addresses and user post counts.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-06-07T01:51:40.678Z
Updated: 2024-08-04T17:37:07.021Z
Reserved: 2023-06-06T13:15:34.083Z
Link: CVE-2020-36723
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-06-07T02:15:12.420
Modified: 2024-11-21T05:30:09.867
Link: CVE-2020-36723
Redhat
No data.