Description

WordPress Plugin WP Print Friendly is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently access both private and password protected posts through the print page. WordPress Plugin WP Print Friendly version 0.5.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 0.5.3 or latest

References

http://secunia.com/advisories/53371/

http://www.securityfocus.com/bid/59822/

Related Vulnerabilities

WordPress Plugin Count per Day Multiple Vulnerabilities (3.5.6)

MySQL CVE-2016-3495 Vulnerability (CVE-2016-3495)

Dolibarr Files or Directories Accessible to External Parties Vulnerability (CVE-2023-33568)

Apache Tomcat Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4444)

WordPress Plugin Restricted Site Access Unspecified Vulnerability (2.0)

Severity

High

Classification

CWE-264 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update Authentication Bypass