CVE

CVE-2021-25084

admin

CVE-2021-25084

The Advanced Cron Manager WordPress plugin before 2.4.2, advanced-cron-manager-pro WordPress plugin before 2.5.3 does not have authorisation checks in some of its AJAX actions, allowing any authenticated users, such as subscriber to call them and add or remove events as well as schedules for example

Source: CVE-2021-25084

Exit mobile version