CVE-2023-3076

Posted on by admin

CVE-2023-3076

The MStore API WordPress plugin before 3.9.9 does not prevent visitors from creating user accounts with the role of their choice via their wholesale REST API endpoint. This is only exploitable if the site owner paid to access the plugin’s pro features.

Source: CVE-2023-3076

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다