Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the email address of the user who posted a blog using the WordPress Post by Email Feature. https://wordpress.org/news/2022/10/wordpress-6-0-3-security-release/ https://jvn.jp/en/jp/JVN09409909/index.html https://wordpress.org/download/
Created wordpress tracking bugs for this issue: Affects: epel-all [bug 2155594] Affects: fedora-all [bug 2155593]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.