The Manage Notification E-mails plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.8.5 via the card_famne_export_settings function. This makes it possible for unauthenticated attackers to obtain plugin settings.
CPE | Name | Operator | Version |
---|---|---|---|
manage_notification_e-mails | lt | 1.8.6 |