Report
The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal, Social Share Buttons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 23.1.2. This makes it possible for unauthenticated attackers to extract data like comment user IDs and IP Addresses.
Score:5.3
Severity:Medium
Version: 23.1.2
There is a patch available in v23.1.3 and we strongly recommend you update to this version as soon as possible.
