Description
WordPress is prone to a security bypass vulnerability. Exploiting this issue could allow an attacker to perform otherwise restricted actions and subsequently read draft posts before they have been published. WordPress version 2.3.1 is vulnerable; prior versions may also be affected.
Remediation
Update to WordPress version 2.3.2 or latest
References
https://core.trac.wordpress.org/ticket/5487
http://www.securityfocus.com/archive/1/485160
Related Vulnerabilities
Oracle Database Server CVE-2007-2114 Vulnerability (CVE-2007-2114)
MySQL CVE-2018-3247 Vulnerability (CVE-2018-3247)
WordPress Plugin Advanced Access Manager Unspecified Vulnerability (5.9.8.1)
WordPress Plugin Product Subtitle For WooCommerce Arbitrary File Disclosure (4.1)
WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5)