PT-2018-8947 · WordPress · Ultimate Member

Gen Sato

·

Publicado

2018-05-14

·

Atualizado

2019-11-20

·

CVE-2018-0589

CVSS v3.1

4.3

Média

VetorAV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Ultimate Member plugin versions prior to 2.0.4
Description The issue allows remote authenticated attackers to bypass access restrictions, enabling them to add a new form in the 'Forms' page.
Recommendations For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-0589

Produtos afetados

Ultimate Member