Lucene search
China National Vulnerability DatabaseCNVD-2022-19835HistoryJan 26, 2022 - 12:00 a.m.
WordPress WP Post Page Clone plugin access control error vulnerability
2022-01-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
24.8%
WordPress is a set of blogging platforms developed by the WordPress Foundation using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL. An access control error vulnerability exists in versions prior to Wordpress Plugin WP Post Page Clone 1.2, which stems from a network system or product that does not properly restrict access to resources from unauthorized roles. An attacker could exploit this vulnerability to allow users with roles as low as Contributor to clone and view drafts and password-protected posts that other users cannot properly view.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp post page clone plugin | lt | 1.2 |
Related
wpexploit
wpexploit
WP Post Page Clone < 1.2 - Unauthorised Post Access
2021-12-27 00:00:00
nvd
nvd
CVE-2021-24733
2022-01-24 08:15:08
wpvulndb
wpvulndb
WP Post Page Clone < 1.2 - Unauthorised Post Access
2021-12-27 00:00:00
cve
cve
CVE-2021-24733
2022-01-24 08:15:08
cvelist
cvelist
CVE-2021-24733 WP Post Page Clone < 1.2 - Unauthorised Post Access
2022-01-24 08:00:49
patchstack
patchstack
prion
prion
Default credentials
2022-01-24 08:15:00