Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature. The developer also provides new patched releases for all versions since 3.7.
[
{
"vendor": "WordPress.org",
"product": "WordPress",
"versions": [
{
"version": "versions prior to 6.0.3",
"status": "affected"
}
]
}
]