CVE-2024-2950 MEDIUM

CVE-2024-2950: BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information Exposure

Vendor Boldgrid
Product BoldGrid Easy SEO – Simple and Effective SEO
Weakness CWE-200 · Info exposure
Published April 6, 2024
Last update April 8, 2026
View on NVD All CVEs

CVSS base score

5.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

The BoldGrid Easy SEO – Simple and Effective SEO plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.6.14 via meta information (og:description) This makes it possible for unauthenticated attackers to view the first 130 characters of a password protected post which can contain sensitive information.

Key dates

02Disclosure timeline

April 6, 2024 CVE published
April 8, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2025-5690 Cursor allows PostgreSQL Anonymizer masked user to gain unauthorized access to authentic data CVE-2024-10050 Elementor Header & Footer Builder <= 1.6.43 - Authenticated (Contributor+) Information Disclosure via Shortcode CVE-2025-11998 HP Card Readers (B Models) – Potential Information Disclosure CVE-2023-6777 WP Go Maps (formerly WP Google Maps) <= 9.0.34 - Information Exposure to Potential Denial of Service CVE-2025-50154 Microsoft Windows File Explorer Spoofing Vulnerability