2 matches found
CVE-2016-10983
The ghost plugin before 0.5.6 for WordPress has no access control for wp-admin/tools.php?ghostexport=true downloads of exported data...
CVE-2016-10983
CVE-2016-10983 affects the Ghost WordPress plugin prior to 0.5.6. The issue is unauthenticated/unrestricted access to exported data via wp-admin/tools.php?ghostexport=true, enabling downloads of exported data. This is due to missing access control in the plugin. Impact is exposure of data through...