Security Advisory
CVE-2023-6496
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The Manage Notification E-mails plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.8.5 via the card_famne_export_settings function. This makes it possible for unauthenticated attackers to obtain plugin settings.