Medium severity4.3NVD Advisory· Published Sep 7, 2023· Updated Jun 17, 2026
CVE-2023-4792
CVE-2023-4792
Description
The Duplicate Post Page Menu & Custom Post Type plugin for WordPress is vulnerable to unauthorized page and post duplication due to a missing capability check on the duplicate_ppmc_post_as_draft function in versions up to, and including, 2.3.1. This makes it possible for authenticated attackers with subscriber access or higher to duplicate posts and pages.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:inqsys:duplicate_post_page_menu_\&_custom_post_type:*:*:*:*:*:wordpress:*:*Range: <=2.3.1
- Range: <=2.3.1
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.