2019-10-17 12:03:42
mitre
PUBLISHED
WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.