Back to search
CVE-2012-3385
Published: Jul 22, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote authors or contributors to obtain sensitive information via unknown vectors.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20120707 Re: CVE #'s for WordPress 3.4.1 release
mailing-list
x_refsource_MLIST
http://codex.wordpress.org/Version_3.4.1
x_refsource_CONFIRM
[oss-security] 20120702 CVE #'s for WordPress 3.4.1 release
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now