The Premium SEO Pack – WP SEO Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.001. This makes it possible for unauthenticated attackers to view limited information from password protected posts through the social meta data.
History

Thu, 19 Sep 2024 22:30:00 +0000

Type Values Removed Values Added
First Time appeared Squirrly
Squirrly wp Seo Plugin
Weaknesses NVD-CWE-noinfo
CPEs cpe:2.3:a:squirrly:wp_seo_plugin:*:*:*:*:*:wordpress:*:*
Vendors & Products Squirrly
Squirrly wp Seo Plugin

Thu, 29 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Calinvingan
Calinvingan premium Seo Pack Wp Seo Plugin
CPEs cpe:2.3:a:calinvingan:premium_seo_pack_wp_seo_plugin:*:*:*:*:*:*:*:*
Vendors & Products Calinvingan
Calinvingan premium Seo Pack Wp Seo Plugin
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 29 Aug 2024 13:00:00 +0000

Type Values Removed Values Added
Description The Premium SEO Pack – WP SEO Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.6.001. This makes it possible for unauthenticated attackers to view limited information from password protected posts through the social meta data.
Title Premium SEO Pack – WP SEO Plugin <= 1.6.001 - Unauthenticated Information Exposure
Weaknesses CWE-200
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2024-08-29T12:31:10.777Z

Updated: 2024-08-29T13:16:08.799Z

Reserved: 2024-04-11T20:10:17.271Z

Link: CVE-2024-3679

cve-icon Vulnrichment

Updated: 2024-08-29T13:15:48.938Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-29T13:15:06.627

Modified: 2024-09-19T22:10:25.747

Link: CVE-2024-3679

cve-icon Redhat

No data.