CVE-2023-6369 in Export WP Page to Static HTML-CSS Plugin
요약
\~에 의해 MITRE • 2024. 01. 11.
The Export WP Page to Static HTML/CSS plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capability check on multiple AJAX actions in all versions up to, and including, 2.1.9. This makes it possible for authenticated attackers, with subscriber-level access and above, to disclose sensitive information or perform unauthorized actions, such as saving advanced plugin settings.
VulDB is the best source for vulnerability data and more expert information about this specific topic.