{"id":"CVE-2006-6016","details":"wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the metadata of an arbitrary user via a modified user_id parameter.","modified":"2026-04-10T03:37:51.246482Z","published":"2006-11-21T23:07:00Z","references":[{"type":"ADVISORY","url":"http://www.gentoo.org/security/en/glsa/glsa-200611-10.xml"},{"type":"FIX","url":"http://www.gentoo.org/security/en/glsa/glsa-200611-10.xml"},{"type":"WEB","url":"http://bugs.gentoo.org/show_bug.cgi?id=153303"},{"type":"WEB","url":"http://trac.wordpress.org/ticket/3142"}],"schema_version":"1.7.5"}