Описание
The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.76. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers to register as an administrator on vulnerable sites.
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.76 (включая)
cpe:2.3:a:apusthemes:superio:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 70%
0.00638
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-266
Связанные уязвимости
CVSS3: 9.8
github
12 месяцев назад
The WP Job Board Pro plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.2.76. This is due to the plugin allowing a user to supply the 'role' field when registering. This makes it possible for unauthenticated attackers to register as an administrator on vulnerable sites.
EPSS
Процентиль: 70%
0.00638
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-266