CVE-2021-36877

Name of the Vulnerable Software and Affected Versions uListing plugin versions <= 2.0.5

Description The issue allows attackers to modify user roles due to a Cross-Site Request Forgery (CSRF) vulnerability. This can be exploited by attackers to gain unauthorized access and make changes to user roles.

Recommendations For versions <= 2.0.5, update to a version greater than 2.0.5 to resolve the issue. As a temporary workaround, consider restricting access to sensitive user role modification functionality until a patch is available.