Security Advisory

CVE-2022-43504

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-05 00:00:00

Last updated 2025-04-24 14:04:17

Assigner jpcert

State PUBLISHED

Description

Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature. The developer also provides new patched releases for all versions since 3.7.

← Browse all CVEs View on cve.org ↗