Omnipressteam

omnipressteam

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Omnipress

omnipress

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-13407 1Omnipressteam 1Omnipress Mar 21, 2025 Mar 14, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient restrictions on which posts can be included. This makes it p...Show more The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from password protected, private, or draft posts that they should not have access to.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-13407

1Omnipressteam

1Omnipress

Mar 21, 2025

Mar 14, 2025

N/A· v4

6.5 MEDIUM· v3

N/A· v2

The Omnipress plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.5.4 via the megamenu block due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from password protected, private, or draft posts that they should not have access to.Show less