CVE Daily

CVE-2023-6203

The Events Calendar WordPress plugin before 6.2.8.1 discloses the content of pas...

High CVSS 7.5

Overview

The Events Calendar WordPress plugin before 6.2.8.1 discloses the content of password protected posts to unauthenticated users via a crafted request

CWE: N/A Published: 2023-12-18T20:15:08.847
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.5 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags