VYPR

Obfuscate Email

by WordPress

CVEs (1)

  • CVE-2024-7413MedAug 12, 2024
    risk 0.34cvss 5.3epss 0.00

    The Obfuscate Email plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.8.1. This is due to the plugin allowing direct access to the bootstrap.php file which has display_errors on. This makes it possible for unauthenticated…