The Customize WordPress Emails and Alerts WordPress plugin prior to 1.8.7 does not have authorisation and CSRF check in its bnfw_search_users AJAX action, allowing any authenticated users to call it and query for user e-mail prefixes (finding the first letter, then the second one, then the third one etc.).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
madewithfuel customize wordpress emails and alerts |