WordPress Plugin Vulnerabilities
WP REST API (WP API) <= 1.2 - Post Revision Disclosure
Description
Unauthenticated users could access revisions of published and unpublished posts. Revisions are now only accessible to authenticated users with permission to edit the revision's post.
Affects Plugins
Fixed in 1.2.1 References
Miscellaneous
Submitter
ethicalhack3r
Submitter twitter
Verified
No
WPVDB ID
Timeline
Publicly Published
2015-04-09 (about 11 years ago)
Added
2015-04-09 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)
WPScan 