๐ [REST API] Allow authors to read their own password protected posts
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: portal.patchman.co
Allow authenticated users to read the contents of password protected posts if they have the `edit_post` meta capability for the post.
This vulnerability affects the following application versions:
- WordPress 4.7
- WordPress 4.7.1
- WordPress 4.7.2
- WordPress 4.7.3
- WordPress 4.7.4
- WordPress 4.7.5
- WordPress 4.7.6
- WordPress 4.7.7
- WordPress 4.7.8
- WordPress 4.7.9
- WordPress 4.7.10
- WordPress 4.7.11
- WordPress 4.7.12
- WordPress 4.7.13
- WordPress 4.7.14
- WordPress 4.7.15
- WordPress 4.7.16
- WordPress 4.7.17
- WordPress 4.7.18
- WordPress 4.7.19
- WordPress 4.8
- WordPress 4.8.1
- WordPress 4.8.2
- WordPress 4.8.3
- WordPress 4.8.4
- WordPress 4.8.5
- WordPress 4.8.6
- WordPress 4.8.7
- WordPress 4.8.8
- WordPress 4.8.9
- WordPress 4.8.10
- WordPress 4.8.11
- WordPress 4.8.12
- WordPress 4.8.13
- WordPress 4.8.14
- WordPress 4.8.15
- WordPress 4.9
- WordPress 4.9.1
- WordPress 4.9.2
- WordPress 4.9.3
- WordPress 4.9.4
- WordPress 4.9.5
- WordPress 4.9.6
- WordPress 4.9.7
- WordPress 4.9.8
- WordPress 4.9.9
- WordPress 4.9.10
- WordPress 4.9.11
- WordPress 4.9.12
- WordPress 4.9.13
- WordPress 4.9.14
- WordPress 4.9.15
- WordPress 4.9.16
- WordPress 5.0
- WordPress 5.0.1
- WordPress 5.0.2
- WordPress 5.0.3
- WordPress 5.0.4
- WordPress 5.0.6
- WordPress 5.0.7
- WordPress 5.0.8
- WordPress 5.0.9
- WordPress 5.0.10
- WordPress 5.0.11
- WordPress 5.0 Beta 3
- WordPress 5.0 Beta 4
- WordPress 5.0 RC1
- WordPress 5.0 RC2
- WordPress 5.0 RC3
- WordPress 5.1
- WordPress 5.1.1
- WordPress 5.1.2
- WordPress 5.1.3
- WordPress 5.1.4
- WordPress 5.1.5
- WordPress 5.1.6
- WordPress 5.1.7
- WordPress 5.1.8
- WordPress 5.2
- WordPress 5.2.1
- WordPress 5.2.2
- WordPress 5.2.3
- WordPress 5.2.4
- WordPress 5.2.5
- WordPress 5.2.6
- WordPress 5.2.7
- WordPress 5.2.8
- WordPress 5.2.9
- WordPress 5.2 Beta 1
- WordPress 5.2 Beta 2
- WordPress 5.3
- WordPress 5.3.1
- WordPress 5.3.2
- WordPress 5.3.3
- WordPress 5.3.4
- WordPress 5.3.5
- WordPress 5.3.6
- WordPress 5.4
- WordPress 5.4.1
- WordPress 5.4.2
- WordPress 5.4.3
- WordPress 5.4.4
- WordPress 5.5
- WordPress 5.5.1
- WordPress 5.5.2
- WordPress 5.5.3
- WordPress 5.6
- WordPress 5.6.1
- WordPress 5.6.2
- WordPress 5.7