Description
The XML-RPC implementation (xmlrpc.php) in WordPress before 2.3.3, when registration is enabled, allows remote attackers to edit posts of other blog users via unknown vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Tune Library SQL Injection (1.5.4)
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.34)
WordPress Plugin UserPro-Community and User Profile Multiple Vulnerabilities (5.1.4)
WordPress Plugin WebP Express Arbitrary File Disclosure (0.14.10)
WordPress Plugin Snazzy Maps Multiple Cross-Site Scripting Vulnerabilities (1.1.3)