Vulnerabilities discovered in WordPress older than 3.8.2

WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor role. More info available on the National Cyber Awareness System: CVE-2014-0165

Leave a comment

Your email address will not be published. Required fields are marked *