The Restrict for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.0.6 due to improper restrictions on hidden data that make it accessible through the REST API. This makes it possible for unauthenticated attackers to extract potentially sensitive data from post content.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-06-06T02:02:55.054Z
Updated: 2024-08-01T18:18:19.071Z
Reserved: 2024-01-25T21:17:47.001Z
Link: CVE-2024-0910
Vulnrichment
Updated: 2024-08-01T18:18:19.071Z
NVD
Status : Modified
Published: 2024-06-06T02:15:53.010
Modified: 2024-11-21T08:47:41.520
Link: CVE-2024-0910
Redhat
No data.