Description
A flaw exists in Wordpress related to the 'wp-admin/press-this.php 'script improperly checking user permissions when publishing posts. This may allow a user with 'Contributor-level' privileges to post as if they had 'publish_posts' permission.
Remediation
References
Related Vulnerabilities
WordPress Plugin Safe SVG Denial of Service (1.9.4)
WordPress Plugin Watu Quiz Cross-Site Scripting (2.4.9)
Multiple SugarCRM Products Remote Code Execution Vulnerability (CVE-2023-22952)
WebLogic CVE-2018-3197 Vulnerability (CVE-2018-3197)
WordPress Plugin Booking.com Product Helper Cross-Site Scripting (1.0.1)