Kevin Murphy

**Name of the Vulnerable Software and Affected Versions** Pubnews theme for WordPress versions up to, and including, 1.0.7 **Description** The issue is related to a missing capability check on the `pubnews importer plugin action for notice()` function, allowing authenticated attackers with Subscriber-level access and above to install arbitrary plugins. This can be leveraged to exploit other vulnerabilities. **Recommendations** For versions up to, and including, 1.0.7, update to a version that includes a fix for the missing capability check on the `pubnews importer plugin action for notice()` function. As a temporary workaround, consider restricting access to the `pubnews importer plugin action for notice()` function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Top Store theme for WordPress versions up to, and including, 1.5.4 **Description** The issue is related to unauthorized arbitrary plugin installation due to a missing capability check on the `top store install and activate callback()` function. This allows authenticated attackers, with subscriber-level access and above, to install arbitrary plugins, which can contain other exploitable vulnerabilities to elevate privileges and gain remote code execution. **Recommendations** For versions up to, and including, 1.5.4, update to a version that includes a fix for this issue. As a temporary workaround, consider restricting access to the `top store install and activate callback()` function to minimize the risk of exploitation. Additionally, restrict the installation of arbitrary plugins to prevent potential elevation of privileges and remote code execution.

**Name of the Vulnerable Software and Affected Versions** Th Shop Mania versions prior to 1.4.9 **Description** The Th Shop Mania theme for WordPress has a vulnerability due to a missing capability check on the `th shop mania install and activate callback()` function. This allows authenticated attackers with Subscriber-level access and above to install arbitrary plugins, which can be leveraged to exploit other vulnerabilities and achieve remote code execution and privilege escalation. **Recommendations** For Th Shop Mania versions prior to 1.4.9, update to the latest version to secure your site. As a temporary workaround, consider disabling the `th shop mania install and activate callback()` function until a patch is available. Restrict access to the notification system to minimize the risk of exploitation. Avoid using the vulnerable function to install plugins until the issue is resolved.