AZL-43177

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-43177.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-43177

Upstream

CVE-2024-1984

Published

2024-04-09T19:15:21Z

Modified

2026-04-21T04:30:56.252286Z

Summary

CVE-2024-1984 affecting package graphene 1.10.4-3

Details

The Graphene theme for WordPress is vulnerable to unauthorized access of data via meta tag in all versions up to, and including, 2.9.2. This makes it possible for unauthenticated individuals to obtain post contents of password protected posts via the generated source.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-1984

Affected packages

Azure Linux:2 / graphene

Package

Name: graphene
Purl: pkg:rpm/azure-linux/graphene

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.10.4-3

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-43177.json"