Security Advisory

CVE-2020-13764

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-06-02 20:33:11

Last updated 2024-08-04 12:25:16

Assigner mitre

State PUBLISHED

Description

common.php in the Gravity Forms plugin before 2.4.9 for WordPress can leak hashed passwords because user_pass is not considered a special case for a $current_user->get($property) call.

← Browse all CVEs View on cve.org ↗