CVE-2020-28033

Name of the Vulnerable Software and Affected Versions: WordPress versions prior to 5.5.2

Description: The issue is related to insufficient access control in certain features of the WordPress content management system. This can be exploited by a remote attacker to impact data integrity. The problem specifically involves mishandling embeds from disabled sites on a multisite network, allowing for spam embeds.

Recommendations: For WordPress versions prior to 5.5.2, update to version 5.5.2 or later to resolve the issue. As a temporary workaround, consider restricting access to embeds from disabled sites on a multisite network to minimize the risk of exploitation.