[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fw09fPCvx3m2oc-k9AEWloFTrb9MUZ9_sPOYtGT0nLZs":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2023-27447","wp-sms-information-disclosure-via-rest-api","WP SMS \u003C= 6.0.4 - Information Disclosure via REST API","The WP SMS plugin for WordPress is vulnerable to information disclosure via the REST API in versions up to, and including, 6.0.4. This allows unauthenticated attackers to retrieve a list of newsletter subscribers.","wp-sms",null,"\u003C=6.0.4","6.0.4.1","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2023-03-02 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F57377380-0435-4747-abba-50063978d8e1?source=api-prod",327]