Postie Plugin 1.9.40 for WordPress - Remote Post Publication Vulnerability

Postie Plugin 1.9.40 for WordPress - Remote Post Publication Vulnerability

CVE-2019-20203 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

The Authorized Addresses feature in the Postie plugin 1.9.40 for WordPress allows remote attackers to publish posts by spoofing the From information of an email message.

Learn more about our Wordpress Pen Testing.