Description
In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API.
Remediation
References
Related Vulnerabilities
PHP Improper Input Validation Vulnerability (CVE-2017-8923)
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6212)
WordPress Plugin Taxonomy Converter Unspecified Vulnerability (1.1)
WordPress Plugin 123ContactForm for WordPress Multiple Vulnerabilities (1.5.6)