The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-08-29T14:00:00

Updated: 2024-08-06T11:41:48.689Z

Reserved: 2014-08-18T00:00:00

Link: CVE-2014-5337

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2014-08-29T13:55:05.410

Modified: 2018-11-19T19:38:54.233

Link: CVE-2014-5337

cve-icon Redhat

No data.