Description
WordPress Plugin Essential Content Types is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently bring the website offline. WordPress Plugin Essential Content Types version 1.4 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Atlassian Confluence Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-29450)
WordPress Plugin FooBox Image Lightbox Security Bypass (2.6.3)
WordPress Plugin Wonder Video Embed Cross-Site Scripting (1.7)
MyBB Improper Access Control Vulnerability (CVE-2016-9413)
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2011-1928)