Unrated severityNVD Advisory· Published May 22, 2019· Updated Aug 5, 2024
CVE-2017-6514
CVE-2017-6514
Description
WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information (Path Disclosure) via a /wp-json/oembed/1.0/embed?url= request, related to the "author_name":" substring.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/WordPressdescription
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/108459mitrevdb-entryx_refsource_BID
- web.archive.org/web/20180612235401/https://github.com/CFSECURITE/wordpressmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.