Wpengine: Security Vulnerabilities
The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated users to post comments on any article, even when 'allow comment' is disabled.
CVSS Score
5.3
EPSS Score
0.216
Published
2019-06-10
Page 2