[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGJVpt2-fVdeHYYXL-gQrPJzIcBoQxW5ItPqyeaATINI":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2018-11580","mass-pagesposts-creator-missing-authorization","Mass Pages\u002FPosts Creator \u003C= 1.2.2 - Missing Authorization","An issue was discovered in mass-pages-posts-creator.php in the MULTIDOTS Mass Pages\u002FPosts Creator plugin 1.2.2 for WordPress. Any logged in user can launch Mass Pages\u002FPosts creation with custom content. There is no nonce or user capability check, so anyone can launch a DoS attack against a site and create hundreds of thousands of posts with custom content.","mass-pagesposts-creator",null,"\u003C=1.2.2","1.2.3","high",7.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:L\u002FA:L","Missing Authorization","2018-06-07 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F966843d1-64c2-4f49-852c-d362714db823?source=api-prod",2056]