CVE-2023-5561

Summary

WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack

Affected Software

VendorProductVersion RangeStatus
WordPressWordPress6.3.0 < 6.3.2affected
WordPressWordPress6.2.0 < 6.2.3affected
WordPressWordPress6.1.0 < 6.1.4affected
WordPressWordPress6.0.0 < 6.0.6affected
WordPressWordPress5.9.0 < 5.9.8affected
WordPressWordPress5.8.0 < 5.8.8affected
WordPressWordPress5.7.0 < 5.7.10affected
WordPressWordPress5.6.0 < 5.6.12affected
WordPressWordPress5.5.0 < 5.5.13affected
WordPressWordPress5.4.0 < 5.4.14affected
WordPressWordPress5.3.0 < 5.3.16affected
WordPressWordPress5.2.0 < 5.2.19affected
WordPressWordPress5.0.0 < 5.0.20affected
WordPressWordPress4.9.0 < 4.9.24affected
WordPressWordPress4.8.0 < 4.8.23affected
WordPressWordPress4.7.0 < 4.7.27affected

Weaknesses

  • CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: yes
    • Technical Impact: partial

References