Administrator(s) Information disclosure via JSON on wordpress.org
Medium
W
WordPress
Submitted None
Actions:
Reported by
596a96cc7bf9108cd896f33c4
Vulnerability Details
Technical details and impact analysis
Greetings,
Hello Security Team,
Summary:
I have found a security vulnerability that can disclose some information of administrator users in this sub domain `developer.wordpress.org`
### Description (Include Impact):
Sensitive information disclosure of administrator users.
### PoC URL:
* https://developer.wordpress.org/wp-json/wp/v2/users
###PoC Screen Shot:
* {F176692}
Let me know if you need more information.
Cheers!
j3
Report Details
Additional information and metadata
State
Closed
Substate
Not-Applicable
Submitted
Weakness
Information Disclosure