Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
24liveblog <= 2.2 - Authenticated (Contributor+) Exposure of Sensitive Information via Block Editor Script Localization
Vulnerability Description
The 24liveblog - live blog tool plugin for WordPress is vulnerable to Exposure of Sensitive Information in versions up to, and including, 2.2. This is due to the lb24_block_enqueue_scripts() function being hooked to enqueue_block_editor_assets and, for any non-administrator user, falling back to loading the administrator-configured site-wide 24liveblog integration secrets (lb24_token, lb24_refresh_token, lb24_uid, lb24_uname) from the options table via get_option() and emitting them through wp_localize_script() as the lb24BlockData JavaScript object. This makes it possible for authenticated attackers, with contributor-level access and above, to extract third-party 24liveblog account credentials (including the API token and refresh token) by simply opening the block editor and inspecting the page source.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
24liveblog 信息泄露漏洞
Vulnerability Description
24liveblog 24liveblog是24liveblog个人开发者的一个实时博客平台组件。 24liveblog 2.2及之前版本存在信息泄露漏洞,该漏洞源于lb24_block_enqueue_scripts()函数在加载编辑资源时,对非管理员用户降级使用get_option()加载管理员配置的站点级24liveblog集成密钥(lb24_token, lb24_refresh_token, lb24_uid, lb24_uname)并通过wp_localize_script()作为lb24Bl
CVSS Information
N/A
Vulnerability Type
N/A