Meta Box – WordPress Custom Fields Framework, CVE-2024-1204

CVE, Research URL: CVE-2024-1204
Home page URL: Security reports for Meta Box – WordPress Custom Fields Framework
Application: Meta Box – WordPress Custom Fields Framework
Published on: Apr 15, 2024
Research Description: The Meta Box WordPress plugin before 5.9.4 does not prevent users with at least the contributor role from access arbitrary custom fields assigned to other user's posts.
Affected versions: max 5.9.4.
Status: vulnerable

Meta Box &#8211; WordPress Custom Fields Framework, CVE-2024-1204