CVE-2013-4340

Name of the Vulnerable Software and Affected Versions WordPress versions prior to 3.6.1

Description The issue allows remote authenticated users to spoof the authorship of a post by leveraging the Author role and providing a modified user ID parameter in the wp-admin/includes/post.php file.

Recommendations For versions prior to 3.6.1, update to version 3.6.1 or later to resolve the issue.