Medium severity4.3NVD Advisory· Published Sep 4, 2023· Updated Jun 17, 2026
CVE-2023-4269
CVE-2023-4269
Description
The User Activity Log WordPress plugin before 1.6.6 lacks proper authorisation when exporting its activity logs, allowing any authenticated users, such as subscriber to perform such action and retrieve PII such as email addresses.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <1.6.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/db3e4336-117c-47f2-9b43-2ca115525297nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.