CVE-2021-24842
The CVE-2021-24842 entry concerns the WordPress Bulk Datetime Change plugin (versions before 1.12). The vulnerability arises from missing capability checks, enabling users with Contributor roles to: 1) list private post titles of other users, and 2) change the posted date of other users’ posts. I...