WPEngine WPGraphQL 漏洞列表

共找到 2 个与 WPEngine WPGraphQL 相关的漏洞

📅 加载漏洞趋势中...

CVE-2019-9881: WPEngine WPGraphQL 0.2.3 - Unauthenticated Comment Posting POC

日期: 2025-08-01 | 影响软件: WPEngine WPGraphQL

The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated users to post comments on any article, even when 'allow comment' is disabled.
CVE-2019-9880: WPEngine WPGraphQL 0.2.3 - Unauthenticated User Information Disclosure POC

日期: 2025-08-01 | 影响软件: WPEngine WPGraphQL

An issue was discovered in the WPGraphQL 0.2.3 plugin for WordPress. By querying the 'users' RootQuery, it is possible, for an unauthenticated attacker, to retrieve all WordPress users details such as email address, role, and username.