CVE-2022-1598
N/A
N/A
Summary
The WPQA Builder WordPress plugin before 5.5 which is a companion to the Discy and Himer , lacks authentication in a REST API endpoint, allowing unauthenticated users to discover private questions sent between users on the site.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Unknown | WPQA Builder | 0 < 5.5 | affected |
Weaknesses
- CWE-306 Missing Authentication for Critical Function
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.