CVE-2020-36730
The Red Hat, NVD, and related feeds corroborate that the WordPress CMP plugin is vulnerable to an authorization bypass in versions up to 3.8.1 due to a missing capability check in three functions: cmp_get_post_detail(), niteo_export_csv(), and cmp_disable_comingsoon_ajax(). This allows unauthenti...