The Site Notes plugin for WordPress has a security vulnerability that can be exploited in all versions up to, and including, 2.0.0. This vulnerability allows unauthenticated attackers to delete admin notes without proper authorization. They can do this by convincing a site administrator to click on a malicious link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
