Vulnerabilities

CVE-2024-13773

by Fred · 14/03/2025

The Civi – Job Board & Freelance Marketplace WordPress Theme plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.4 via hard-coded credentials. This makes it possible for unauthenticated attackers to extract sensitive data including LinkedIn client and secret keys.

More information : http://localhost:1337/wp-content/themes/civi/includes/class-init.php#L36

Similar

Tags: Cybersecurity Alert