CVE-2024-1381

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 5, 2024

Summary

CVE-2024-1381: The Page Builder Sandwich plugin for WordPress, used by an estimated 20,000 websites, contains a vulnerability that allows authenticated attackers with subscriber access or higher to extract sensitive user data and configuration information. This issue, affecting all versions up to 5.1.0, poses a significant risk to WordPress sites using this plugin. It is crucial for users to update to the latest version or consider alternative page builders to mitigate the exposure of sensitive information.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share