Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates, CVE-2024-1857

CVE, Research URL: CVE-2024-1857
Home page URL: Security reports for Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates
Application: Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates
Published on: Mar 16, 2024
Research Description: The Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.6 via the wps_wgm_preview_email_template(). This makes it possible for unauthenticated attackers to read password protected and draft posts that may contain sensitive data.
Affected versions: Min -, max 2.6.7.
Status: vulnerable

Ultimate Gift Cards for WooCommerce &#8211; Create, Redeem &amp; Manage Digital Gift Certificates with Personalized Templates, CVE-2024-1857