Description
WordPress Plugin Mobile blocks is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions or even take over a website. WordPress Plugin Mobile blocks version 1.0 is vulnerable.
Remediation
Update to plugin version 1.1 or latest
References
https://github.com/Freemius/wordpress-sdk/commit/50a7ca3d921d59e1d2b39bb6ab3c6c7efde494b8
https://plugins.svn.wordpress.org/mobile-blocks/trunk/readme.txt
Related Vulnerabilities
WordPress Plugin Google Doc Embedder Arbitrary File Disclosure (2.4.6)
WordPress Plugin Media File Manager Multiple Vulnerabilities (1.4.2)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-3579)
Oracle Database Server CVE-2014-4293 Vulnerability (CVE-2014-4293)