CVE-2023-5561

CVE Database · CVE-2023-5561

CVE-2023-5561

· MEDIUMModified

CVSS v3.1

5.3

EPSS

3.86%

Published

Oct 16, 2023

Modified

Apr 23, 2025

Public PoC / Exploit (2)

All weaponized →

NucleiNuclei detection template TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to discern the email addresses of users who have published public posts on an affected website via an Oracle style attack

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected Products (17)

wordpress · wordpress (up to 4.7.27)vulnerable

wordpress · wordpress (up to 4.8.23)vulnerable

wordpress · wordpress (up to 4.9.24)vulnerable

wordpress · wordpress (up to 5.0.20)vulnerable

wordpress · wordpress (up to 5.1.17)vulnerable

wordpress · wordpress (up to 5.2.19)vulnerable

wordpress · wordpress (up to 5.3.16)vulnerable

wordpress · wordpress (up to 5.4.14)vulnerable

References (6)

https://lists.debian.org/debian-lts-announce/2023/11/msg00014.html

https://wpscan.com/blog/email-leak-oracle-vulnerability-addressed-in-wordpress-6-3-2/

ExploitThird Party Advisory

https://wpscan.com/vulnerability/19380917-4c27-4095-abf1-eba6f913b441

Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/11/msg00014.html

https://wpscan.com/blog/email-leak-oracle-vulnerability-addressed-in-wordpress-6-3-2/

ExploitThird Party Advisory

https://wpscan.com/vulnerability/19380917-4c27-4095-abf1-eba6f913b441

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs