GravityForms < 2.4.9 - Hashed Password Leakage

Affects Plugin

fixed in version 2.4.9

References

CVE 2020-13764

Classification

Type SENSITIVE DATA DISCLOSURE
OWASP Top 10 A3: Sensitive Data Exposure

Miscellaneous

Original Researcher Jan van der Put and Harm Blankers of REQON Security
Views 1574
Verified No
WPVDB ID 10252

Timeline

Publicly Published 2019-05-08 (about 1 year ago)
Added 2020-06-03 (about 1 month ago)
Last Updated 2020-06-04 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin