Description
WordPress Plugin Visualizer:Tables and Charts Manager for WordPress is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform arbitrary SQL queries that can be leveraged for privilege escalation. WordPress Plugin Visualizer:Tables and Charts Manager for WordPress version 3.10.15 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.11.0 or latest
References
Related Vulnerabilities
MySQL CVE-2020-2589 Vulnerability (CVE-2020-2589)
MySQL CVE-2020-2752 Vulnerability (CVE-2020-2752)
PHP Out-of-bounds Write Vulnerability (CVE-2021-21703)
Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-5301)
WordPress Plugin Ultimate Tag Cloud Widget Unspecified Vulnerability (2.3)