Miembros de
Boletines de Vulnerabilidades |
Medium Severity Vulnerability Patched in User Profile Picture Plugin |
|
Información sobre el sistema |
|
| Software afectado | Wordpress |
Descripción |
|
|
On February 15, 2021, our Threat Intelligence team initiated the responsible disclosure process for a vulnerability that we discovered in User Profile Picture, a WordPress plugin installed on over 60,000 sites. The vulnerability made it possible for authenticated users with the upload_files capability to obtain sensitive user information. We initially reached out to Cozmoslabs, the […] More info: https://www.wordfence.com/blog/2021/03/medium-severity-vulnerability-patched-in-user-profile-picture-plugin/ |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2021-24170. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2021-03-05 |