Description
Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature. The developer also provides new patched releases for all versions since 3.7.
Remediation
References
Related Vulnerabilities
Magento CVE-2019-7876 Vulnerability (CVE-2019-7876)
WordPress Plugin WP Job Manager Cross-Site Scripting (1.26.1)
WordPress Plugin Import and export users and customers Directory Traversal (1.14.2)
WordPress Plugin Slider Revolution Responsive Arbitrary File Upload (3.0.95)
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2006-0200)