Vulnerabilities > Demomentsomtres

DATE CVE VULNERABILITY TITLE RISK
2024-01-15 CVE-2023-5905 Missing Authorization vulnerability in Demomentsomtres Export Posts With Images 20220825
The DeMomentSomTres WordPress Export Posts With Images WordPress plugin through 20220825 does not check authorization of requests to export the blog data, allowing any logged in user, such as subscribers to export the contents of the blog, including restricted and unpublished posts, as well as passwords of protected posts.
network
low complexity
demomentsomtres CWE-862
8.1