Описание
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX.
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX.
Связанные уязвимости
CVSS3: 7.5
nvd
больше 6 лет назад
The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX.