Descrição
Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature. The developer also provides new patched releases for all versions since 3.7.
Software
Não informado
Tipo Software
Core
CVE
CVE-2022-43504
Tags
Nâo informado
Data de publicação
05/12/2022
Última atualização
25/04/2025
Pontuação em CVSS 3.0
5.3
Médio