[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fZjNMkLSbSFqmhmXOU9ze4KTR4NAbtJX37Ius6WFMSac":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2023-5454","templately-improper-authorization-to-arbitrary-post-deletion","Templately \u003C= 2.2.5 - Improper Authorization to Arbitrary Post Deletion","The Templately plugin for WordPress is vulnerable to unauthorized loss of data due to an improper capability check on the 'delete' REST endpoint in versions up to, and including, 2.2.5. This makes it possible for authenticated attackers to delete arbitrary posts.","templately",null,"\u003C=2.2.5","2.2.6","medium",6.5,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:N\u002FA:H","Improper Authorization","2023-10-16 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc74553c0-366e-44d7-8c4a-161a05ef02b4?source=api-prod",99]