An issue was discovered in the "Email Subscribers & Newsletters" plugin before 3.4.8 for WordPress. Sending an HTTP POST request to a URI with /?es=export at the end, and adding option=view_all_subscribers in the body, allows downloading of a CSV data file with all subscriber data.
References
Link | Resource |
---|---|
https://blog.threatpress.com/vulnerability-email-subscribers-plugin/ | Third Party Advisory |
https://wordpress.org/plugins/email-subscribers/#developers | Release Notes |
https://www.exploit-db.com/exploits/43872/ | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2018-01-26T20:00:00
Updated: 2018-01-30T15:57:01
Reserved: 2018-01-22T00:00:00
Link: CVE-2018-6015
JSON object: View
NVD Information
Status : Analyzed
Published: 2018-01-26T20:29:01.080
Modified: 2018-02-12T18:45:53.550
Link: CVE-2018-6015
JSON object: View
Redhat Information
No data.
CWE