CVE-2024-1769

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 5, 2024

Updated: Dec 23, 2024

Summary

CVE-2024-1769 is a newly disclosed vulnerability affecting the JM Twitter Cards plugin for WordPress. This issue allows unauthenticated attackers to view password-protected post content by exploiting the meta description data. In all versions up to and including 12, the plugin fails to properly protect this information. This vulnerability poses a significant risk for WordPress websites using the JM Twitter Cards plugin, as sensitive content may be exposed without proper authorization. It is strongly recommended that users update to the latest version of the plugin or consider disabling the meta tag functionality until a patch is released.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database