2019-09-17 14:21:20
mitre
PUBLISHED
The ghost plugin before 0.5.6 for WordPress has no access control for wp-admin/tools.php?ghostexport=true downloads of exported data.