Medium severity5.3NVD Advisory· Published Mar 5, 2024· Updated Apr 8, 2026

CVE-2024-1769

Description

The JM Twitter Cards plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 14 via the meta description data. This makes it possible for unauthenticated attackers to view password protected post content when viewing the page source.

Affected products

Jmlapam/Jm Twitter Cards
cpe:2.3:a:jmlapam:jm_twitter_cards:*:*:*:*:*:wordpress:*:*
Range: <14.1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.wordfence.com/threat-intel/vulnerabilities/id/b48e5973-6923-47cc-a660-ecc989f540f8nvdThird Party Advisory
wordpress.org/plugins/jm-twitter-cards/nvdProduct
plugins.trac.wordpress.org/changesetnvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000