What the vulnerability does
01Description
Insertion of Sensitive Information Into Sent Data vulnerability in themelooks FoodBook foodbook allows Retrieve Embedded Sensitive Data.This issue affects FoodBook: from n/a through <= 4.7.6.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
What the vulnerability does
Insertion of Sensitive Information Into Sent Data vulnerability in themelooks FoodBook foodbook allows Retrieve Embedded Sensitive Data.This issue affects FoodBook: from n/a through <= 4.7.6.
Explanation of Vulnerability in Simple Terms
FoodBook versions up to 4.7.6 expose sensitive information through improper access controls. An attacker on the network can read non-public data without authentication or user interaction. The vulnerability affects confidentiality but not data integrity or availability. Update to a version newer than 4.7.6.
What an attacker can do
Read sensitive information from the site without logging in.
Potential impact on your site
Visitor data, configuration details, or other non-public information may be exposed to anyone on the internet.
Conditions required to exploit
Network access only; no authentication or user interaction required.
Key dates
External resources