Acf To Rest Api
Approved changes feed: RSS · Atom
cpe:2.3:a:acf_to_rest_api_project:acf_to_rest_api:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Acf To Rest Api Project (aa20607a-1ae5-50df-ba64-af0ba4936828) |
|---|---|
| Product | Acf To Rest Api (e0ca8803-8e70-5a99-809e-548d7602bfc1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-13700 |
vulnerable | 2026-06-03 14:41:37.037683 |
Details available
An issue was discovered in the acf-to-rest-api plugin through 3.1.0 for WordPress. It allows an insecure direct object reference via permalinks manipulation, as demonstrated by a wp-json/acf/v3/options/ request that reads sensitive information in the wp_options table, such as the login and pass values.
Published: 2020-06-24T14:25:30.000Z
Updated: 2024-08-04T12:25:16.446Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.