Description
In WordPress before 4.9.9 and 5.x before 5.0.1, authors could bypass intended restrictions on post types via crafted input.
Remediation
References
Related Vulnerabilities
GibbonEdu CVE-2023-45878 Vulnerability (CVE-2023-45878)
WordPress Plugin User Photo Cross-Site Scripting (0.9.5.1)
WordPress Plugin Vmax Project Manager Arbitrary File Upload (1.1)
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.1)
WordPress Plugin Order Export & Order Import for WooCommerce Information Disclosure (1.0.8)