The RSS Aggregator plugin for WordPress, called Feedzy, has a security issue that allows users with contributor-level access or higher to make unauthorized web requests. This could potentially be used to access and change information from internal services. The issue was fixed in versions 4.4.7 and 4.4.8 for different levels of users.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
