Thura Moe Myint

**Name of the Vulnerable Software and Affected Versions** Premium Addons for Elementor plugin for WordPress versions up to, and including, 4.10.31 **Description** The issue allows authenticated attackers with subscriber-level access and above to retrieve Elementor template data due to a missing capability check on the `get template content()` function. This enables unauthorized access of data. **Recommendations** For versions up to, and including, 4.10.31, update to a version higher than 4.10.31 to resolve the issue. As a temporary workaround, consider restricting access to the `get template content()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce plugin versions up to, and including, 5.7.17 **Description** The issue allows authenticated attackers with subscriber access and above to obtain the contents of private and password-protected posts due to a missing capability check on the `get template content` function. This enables unauthorized access to sensitive data. **Recommendations** For versions up to, and including, 5.7.17, update to a version that includes a fix for the missing capability check on the `get template content` function to prevent unauthorized access to private and password-protected posts.

**Name of the Vulnerable Software and Affected Versions** The Ivory Search – WordPress Search Plugin versions up to, and including, 5.5.5 **Description** The issue allows authenticated attackers with subscriber-level access and above to modify data without authorization due to a missing capability check on the `ajax create index()` function. This makes it possible for them to trigger index creation. **Recommendations** For versions up to, and including, 5.5.5, consider disabling the `ajax create index()` function until a patch is available to prevent unauthorized modification of data. Restrict access to the affected function to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Customer Reviews for WooCommerce plugin for WordPress (affected versions not specified) **Description** The issue allows unauthorized access to data due to a missing capability check on the `woocommerce json search coupons` function. This enables attackers with subscriber-level access to view coupon codes. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Customer Reviews for WooCommerce plugin for WordPress versions up to, and including, 5.46.0 **Description** The issue is related to unauthorized email sending due to a missing capability check on the `send test email()` function. This allows authenticated attackers with subscriber-level access and above to send arbitrary test emails. **Recommendations** For versions up to, and including, 5.46.0, update to a version that includes a fix for the missing capability check on the `send test email()` function. As a temporary workaround, consider restricting access to the `send test email()` function to prevent unauthorized email sending.

**Name of the Vulnerable Software and Affected Versions** WPZOOM Social Feed Widget & Block plugin for WordPress versions up to, and including, 2.1.13 **Description** The issue is related to unauthorized access due to a missing capability check on the `wpzoom instagram clear data()` function. This allows authenticated attackers with subscriber-level access and above to delete all Instagram images installed on the site. **Recommendations** For versions up to, and including, 2.1.13, update to a version higher than 2.1.13 to resolve the issue. As a temporary workaround, consider disabling the `wpzoom instagram clear data()` function until a patch is available. Restrict access to the plugin's functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Relevanssi – A Better Search plugin for WordPress versions up to, and including, 4.22.1 **Description** The issue allows unauthenticated attackers to embed untrusted input into exported CSV files, which can result in code execution when these files are downloaded and opened on a local system with a vulnerable configuration. This is due to a CSV Injection vulnerability. **Recommendations** For versions up to, and including, 4.22.1, update to a version later than 4.22.1 to resolve the issue. As a temporary workaround, consider avoiding the export of CSV files until a patch is available. Restrict access to the CSV export feature to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Relevanssi – A Better Search plugin for WordPress versions up to, and including, 4.22.1 **Description** The issue allows unauthorized modification of data due to a missing capability check on the `relevanssi update counts()` function. This makes it possible for unauthenticated attackers to execute expensive queries on the application, potentially leading to a denial-of-service (DOS) attack. **Recommendations** For versions up to, and including, 4.22.1, update to a version that includes a fix for the missing capability check in the `relevanssi update counts()` function. As a temporary workaround, consider disabling the `relevanssi update counts()` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Event Monster WordPress plugin versions prior to 1.2.0 **Description** The issue is related to the lack of validation and escaping of certain parameters before they are used in SQL statements, which could lead to SQL Injection. This can be exploited by high privilege users. **Recommendations** For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation by high privilege users.

**Name of the Vulnerable Software and Affected Versions** Event Monster WordPress plugin versions prior to 1.2.0 **Description** The issue concerns a lack of CSRF check when deleting visitors, which could allow attackers to make logged-in admins delete arbitrary visitors via a CSRF attack. **Recommendations** For versions prior to 1.2.0, update to version 1.2.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Easy Social Feed Free and Pro WordPress plugins versions prior to 6.2.7 **Description** The issue is related to Reflected Cross-Site Scripting, where some parameters used via AJAX actions are not sanitized before being outputted back in the response. **Recommendations** For versions prior to 6.2.7, update to version 6.2.7 or later to resolve the issue.