1 results (0.004 seconds)

CVSS: 5.4EPSS: %CPEs: 1EXPL: 0

The Simple Page Ordering plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the rest_page_ordering function in versions up to, and including, 2.5.0. This makes it possible for subscriber-level attackers to obtain structural information maintained by the plugin. • CWE-862: Missing Authorization •