CVE-2021-24717

Posted on by admin

CVE-2021-24717

The AutomatorWP WordPress plugin before 1.7.6 does not perform capability checks which allows users with Subscriber roles to enumerate automations, disclose title of private posts or user emails, call functions, or perform privilege escalation via Ajax actions.

Source: CVE-2021-24717

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다