CVE

CVE-2022-1598

CVE-2022-1598

The WPQA Builder WordPress plugin before 5.4 which is a companion to the Discy and Himer , lacks authentication in a REST API endpoint, allowing unauthenticated users to discover private questions sent between users on the site.

Source: CVE-2022-1598

Exit mobile version