Description
WordPress Plugin Beaver Builder-WordPress Page Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently create/edit pages, manage services or list all users. WordPress Plugin Beaver Builder-WordPress Page Builder version 1.7 is vulnerable.
Remediation
Update to plugin version 1.7.1 or latest
References
Related Vulnerabilities
Lighttpd Integer Overflow or Wraparound Vulnerability (CVE-2019-11072)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-7852)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2)
Oracle Database Server CVE-2006-5332 Vulnerability (CVE-2006-5332)