The Piotnet Addons For Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.29 via the 'pafe_posts_list' function. This makes it possible for unauthenticated attackers to extract sensitive data including titles and excerpts of future, draft, and pending blog posts.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2024-07-27T11:13:36.446Z
Updated: 2024-08-01T21:18:06.494Z
Reserved: 2024-06-03T22:40:21.146Z
Link: CVE-2024-5614
Vulnrichment
Updated: 2024-08-01T21:18:06.494Z
NVD
Status : Awaiting Analysis
Published: 2024-07-27T12:15:09.663
Modified: 2024-07-29T14:12:08.783
Link: CVE-2024-5614
Redhat
No data.