Report
The Post Expirator WordPress plugin before 2.6.0 does not have proper capability checks in place, which could allow users with a role as low as Contributor to schedule deletion of arbitrary posts.
Score:3.8
Severity:Low
Version: 2.5.1
There is a patch available in v2.6.0 and we strongly recommend you update to this version as soon as possible.
