CVE-2023-1027

Name of the Vulnerable Software and Affected Versions WP Meta SEO plugin for WordPress versions up to, and including, 4.5.3

Description The issue arises from a missing capability check on the checkAllCategoryInSitemap function, allowing authenticated attackers with subscriber-level access to obtain post categories. This is due to the plugin relying on nonce checks for access control, which are accessible to all authenticated users regardless of role.

Recommendations For versions up to, and including, 4.5.3, update to a version higher than 4.5.3 to resolve the issue. As a temporary workaround, consider restricting access to the checkAllCategoryInSitemap function until a patch is available.