Vulnerability Details CVE-2024-1330
The kadence-blocks-pro WordPress plugin before 2.3.8 does not prevent users with at least the contributor role using some of its shortcode's functionalities to leak arbitrary options from the database.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.0%
CVSS Severity
CVSS v3 Score 4.3
References
Products affected by CVE-2024-1330
-
cpe:2.3:a:kadencewp:kadence_blocks_pro:*