PT-2019-8518 · WordPress · Post-Pay-Counter Plugin

Published

2019-08-22

·

Updated

2019-08-26

·

CVE-2017-18584

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions post-pay-counter plugin versions prior to 2.731
Description The issue concerns a lack of permissions check for an update-setting action in the post-pay-counter plugin for WordPress.
Recommendations For versions prior to 2.731, update the post-pay-counter plugin to version 2.731 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2017-18584

Affected Products

Post-Pay-Counter Plugin