CVE-2015-20067

Summary

The WP Attachment Export WordPress plugin before 0.2.4 does not have proper access controls, allowing unauthenticated users to download the XML data that holds all the details of attachments/posts on a Wordpress

Affected Software

VendorProductVersion RangeStatus
UnknownWP Attachment Export0.2.4 < 0.2.4affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CVE Program Container

Additional References

References