Charles Strader

**Name of the Vulnerable Software and Affected Versions** WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin versions prior to 4.5.8 **Description** The issue concerns an AJAX action in the WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin that lacks capability checks. This allows users with low privileges, such as subscribers, to update license options, including the key and email. **Recommendations** For WPBakery Page Builder (Visual Composer) Clipboard WordPress plugin versions prior to 4.5.8, update to version 4.5.8 or later to resolve the issue.