CVE-2019-9880

An issue was discovered in the WPGraphQL 0.2.3 plugin for WordPress. By querying the 'users' RootQuery, it is possible, for an unauthenticated attacker, to retrieve all WordPress users details such as email address, role, and username.
Configurations

Configuration 1

cpe:2.3:a:wpgraphql:wpgraphql:0.2.3:*:*:*:*:wordpress:*:*

Information

Published : 2019-06-10 06:29

Updated : 2019-06-11 02:45


NVD link : CVE-2019-9880

Mitre link : CVE-2019-9880

Products Affected
No products.
CWE