The WordPress RSS Feed Retriever plugin is a vulnerable tool used with the WordPress system. In versions up to 1.6.7, a security check was missing which allowed people to bypass the authorization process. This means that anyone, including those who are unauthenticated, can change the settings of the plugin.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
