Description
WordPress Plugin TI WooCommerce Wishlist is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin's options. WordPress Plugin TI WooCommerce Wishlist version 1.21.11 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.21.12 or latest
References
Related Vulnerabilities
WordPress Plugin Homepage SlideShow 'upload.php' Arbitrary File Upload (2.0)
WordPress Plugin wp audio gallery playlist 'playlist.php' SQL Injection (0.12)
WordPress Plugin Customize Youtube Videos Multiple Vulnerabilities (0.2)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2018-14720)