VYPR
Medium severity4.3NVD Advisory· Published Sep 4, 2023· Updated Jun 17, 2026

CVE-2023-4269

CVE-2023-4269

Description

The User Activity Log WordPress plugin before 1.6.6 lacks proper authorisation when exporting its activity logs, allowing any authenticated users, such as subscriber to perform such action and retrieve PII such as email addresses.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.