WordPress is the WordPress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress DSGVO Tools in version 3.1.23 and earlier has an access control error vulnerability that stems from the application’s lack of capability checking and random number checking, which can be exploited by an unauthenticated attacker to remove unsubscriptions without checking post type requirements.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress dsgvo tools | le | 3.1.23 |