CVE-2024-6499

NVD Published Date: August 24, 2024 at 04:15 AM
NVD Last Modified: August 26, 2024 at 12:47 PM
Download Patch
Vulnerability ID
CVE-2024-6499
Severity
MEDIUM
Severity Score
5.3
Summary
The WordPress Button Plugin MaxButtons plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 9.7.8. This makes it possible for unauthenticated attackers to obtain the full path to instances, which they may be able to use in combination with other vulnerabilities or to simplify reconnaissance work. On its own, this information is of very limited use.
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CWE ID
None

Recent Publish

CVE-2024-7351

CVE-2024-8127

CVE-2024-8128

CVE-2024-7656

CVE-2022-43915

2024-04 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5036896)

See SecOps Solution
in action

Schedule Demo