8 matches found
CVE-2011-5270
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publishposts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contributor role...
WordPress < 3.0.6 Access Restriction Bypass Vulnerability
WordPress is prone to an access restriction bypass vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
WordPress 3.1.x < 3.1.2 / 3.0.x < 3.0.6 Multiple Vulnerabilities
Binary data 9109.prm...
CVE-2011-5270
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publishposts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contributor role...
CVE-2011-5270
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publishposts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contributor role...
CVE-2011-5270
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publishposts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contributor role...
CVE-2011-5270
Affected product: WordPress (before 3.0.6). The vulnerability in wp-admin/press-this.php does not properly enforce the publish_posts capability, enabling a user with Contributor-level privileges to publish posts as if they had publish_posts. Root cause: permission check flaw in the press-this.php...
CVE-2011-5270
wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publishposts capability requirement, which allows remote authenticated users to perform publish actions by leveraging the Contributor role...