[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f763RptljZRKbgLHW4Rehh6Xp3arKoh2J4_NU8cF6nMw":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"WF-cbff7ec1-535d-43bf-be61-83a1e7625c77-top-10","top-10-popular-posts-plugin-for-wordpress-missing-authorization-on-tptnchartdata","Top 10 – Popular posts plugin for WordPress \u003C= 3.2.4 - Missing Authorization on tptn_chart_data","The Top 10 – Popular posts plugin for WordPress is vulnerable to insufficient access control in the 'tptn_chart_data' AJAX action in versions up to, and including, 3.2.4. This allows authenticated attackers to access chart data granted they can access the admin dashboard and retrieve the nonce used for access control.","top-10",null,"\u003C=3.2.4","3.2.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Missing Authorization","2023-02-22 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fcbff7ec1-535d-43bf-be61-83a1e7625c77?source=api-prod",335]