VDB
H1-2997549
H1-2997549
PUBLISHED
CVSS 5.300000190734863 MEDIUM
CVE-2023-5561 on Payapps.com
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Exploit Intelligence
- Updated POC for Unauth Post Author Email Disclosures WordPress CVE-2023-5561 (github-poc-repo)
- CVE-2023-5561-PoC (github-poc-repo)
- CVE-2023-5561-PoC (github-poc)
- Updated POC for Unauth Post Author Email Disclosures WordPress CVE-2023-5561 (github-poc)
- WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack (github-poc)
- CVE-2023-5561 on Payapps.com (hackerone)
- CVE-2023-5561 on Payapps.com (hackerone)
- Nuclei Template: CVE-2023-5561 (nuclei-template)
Timeline
- Mar 5, 2025 CVE Published
- Mar 5, 2025 PoC Published
References
- CVE-2023-5561 on Payapps.com advisory