CVE-2018-11580
The CVE-2018-11580 entry concerns the MULTIDOTS Mass Pages/Posts Creator WordPress plugin (version 1.2.2). The vulnerability arises in mass-pages-posts-creator.php where there is no nonce or user capability check, allowing any logged-in user to initiate Mass Pages/Posts creation with custom conte...