VYPR
Unrated severityNVD Advisory· Published Jan 21, 2014· Updated Jun 16, 2026

CVE-2012-6635

CVE-2012-6635

Description

wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict excerpt-view access, which allows remote authenticated users to obtain sensitive information by visiting a draft.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

19
  • WordPress/WordPress19 versions
    cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*+ 18 more
    • cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*range: <=3.3.2
    • cpe:2.3:a:wordpress:wordpress:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.2:beta1:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:wordpress:wordpress:3.3.1:*:*:*:*:*:*:*
    • (no CPE)range: <3.3.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.