Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin User Profile Picture Information Disclosure - CVE-2021-24170 - Vulnerability Database
WP Plugin Metronet Profile Picture

WordPress Plugin User Profile Picture Information Disclosure - CVE-2021-24170

Medium
Reference: CVE-2021-24170
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-24170
Title: WordPress Plugin User Profile Picture Information Disclosure
Overview:

WordPress Plugin User Profile Picture is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin User Profile Picture version 2.4.0 is vulnerable prior versions may also be affected.