{"vulnerability": "CVE-2020-8771", "sightings": [{"uuid": "49e21f9c-531e-4664-bb58-1218ad049183", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8771", "type": "seen", "source": "https://t.me/arpsyndicate/68", "content": "#ExploitObserverAlert\n\nCVE-2020-8771\n\nDESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-8771. The Time Capsule plugin before 1.21.16 for WordPress has an authentication bypass. Any request containing IWP_JSON_PREFIX causes the client to be logged in as the first account on the list of administrator accounts.\n\nFIRST-EPSS: 0.061420000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-10T22:28:02.000000Z"}]}