MEDIUM
24liveblog
CVE published 2026-06-24
CVE-2026-9183
The 24liveblog - live blog tool plugin for WordPress is vulnerable to Exposure of Sensitive Information in versions up to, and including, 2.2. This vulnerability allows authenticated attackers, with contributor-level access and above, to extract third-party 24liveblog account credentials by inspecting the page source in the block editor. The issue arises from the lb24_block_enqueue_scripts() function bein [truncated]