Description
WordPress Plugin Unyson is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Unyson version 2.7.18 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.7.19 or latest
References
Related Vulnerabilities
Oracle JRE CVE-2013-5814 Vulnerability (CVE-2013-5814)
Magento Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2019-7872)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-1849)
WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.9)
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.2)