CVE-2023-4269

CVSS V2 None CVSS V3 None
Description
The User Activity Log WordPress plugin before 1.6.6 lacks proper authorisation when exporting its activity logs, allowing any authenticated users, such as subscriber to perform such action and retrieve PII such as email addresses.
Overview
  • CVE ID
  • CVE-2023-4269
  • Assigner
  • contact@wpscan.com
  • Vulnerability Status
  • Awaiting Analysis
  • Published Version
  • 2023-09-04T12:15:10
  • Last Modified Date
  • 2023-09-05T06:50:39
History
Created Old Value New Value Data Type Notes
2023-09-06 03:06:12 Added to TrackCVE
2023-09-06 03:06:15 Weakness Enumeration new