CVE-2022-43504 Information

Description

Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature.

Reference

https://wordpress.org/news/2022/10/wordpress-6-0-3-security-release/ https://jvn.jp/en/jp/JVN09409909/index.html https://wordpress.org/download/