wordpress -- unmoderated comments disclosure

ID 6A31CBE3-1695-11DC-A197-0011098B2F36
Type freebsd
Reporter FreeBSD
Modified 2007-08-16T00:00:00


Blogsecurity reports:

An attacker can read comments on posts that have not been moderated. This can be a real security risk if blog admins are using unmoderated comments (comments that have not been made public) to hide sensitive notes regarding posts, future work, passwords etc. So please be careful if you are one of these blog admins.