Wpengine: Security Vulnerabilities
The createComment mutation in the WPGraphQL 0.2.3 plugin for WordPress allows unauthenticated users to post comments on any article, even when 'allow comment' is disabled.
CVSS Score
5.3
EPSS Score
0.192
Published
2019-06-10
Page 2