cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-9627,https://securityvulnerability.io/vulnerability/CVE-2024-9627,Unauthenticated Disclosure of Sensitive Information in TeploBot for WordPress,"The TeploBot - Telegram Bot for WP plugin for WordPress has a vulnerability that affects its 'service_process' function, where lack of sufficient authorization checks can lead to the unintended exposure of sensitive information. Specifically, unauthenticated users can gain access to the Telegram Bot Token, a crucial secret that enables control over the bot. This issue poses significant security risks, as the exposed token may allow malicious actors to manipulate or hijack the bot's operations.",Wordpress,Teplobot,7.3,HIGH,0.0004600000102072954,false,,false,false,false,,,false,false,,2024-10-22T07:15:00.000Z,0