cleantalk
Vulnerabilities and Security Researches

Simple History – user activity log, audit tool, 2d018bf11d8cc00370eab69492a7b038453d644b

CVE, Research URL

2d018bf11d8cc00370eab69492a7b038453d644b

Home page URL

Security reports for Simple History – user activity log, audit tool

Application

Simple History – user activity log, audit tool

Published on
Aug 01, 2014
Research Description
Simple History – Track, Log, and Audit WordPress Changes [simple-history] < 1.0.8 Simple History <= 1.0.7 - Sensitive Information Disclosure The Simple History plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 1.0.7 via the 'rss_secret' parameter. This can allow unauthenticated attackers to view sensitive information from the RSS feed.
Affected versions
max 1.0.8.
Status
vulnerable
Previous vulnerability researches
WordPress Connect (feaf7c04-4991-4c34-bfbf-d849a9e38599) , Jun 16, 2026
WordPress Connect (5b2d1beeae1454c4c4f60eac4f084fd504540b28) , Jun 16, 2026
WordPress Connect (b326cdbf2040aa8eeb688f951965600d9b290062) , Jun 06, 2024
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026