| ID | CVE-2025-2942 | ||||||
| Sažetak | The Order Delivery Date WordPress plugin before 12.6.0 discloses arbitrary post title (such as from draft and private posts) via an unauthenticated AJAX action, allowing attackers to retrieve such information | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | None | ||||||
| Zadnje važnije ažuriranje | 11-07-2025 - 06:15 | ||||||
| Objavljeno | 11-07-2025 - 06:15 |
