CVE-2015-20067

Published November 1st, 2021

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

MEDIUM

Affected

PROJECT

Description

The WP Attachment Export WordPress plugin before 0.2.4 does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a Wordpress

espreto/wpsploit

WPSploit - Exploiting Wordpress With Metasploit

GitHub

233