Description

WordPress Plugin User Access Manager is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin User Access Manager version 1.2.6.9 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.2.6.10 or latest

References

https://wordpress.org/plugins/user-access-manager/changelog/

Related Vulnerabilities

Nexus Repository Manager Incorrect Default Permissions Vulnerability (CVE-2019-9630)

Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-34626)

PHP-Fusion Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1804)

WordPress Plugin Background Music Cross-Site Scripting (1.0)

WordPress Plugin Activity Log Information Disclosure (2.2.12)

Severity

High

Tags

Missing Update