Broken Access Control vulnerability leading to plugin settings change by the subscriber or higher role users discovered by ptsfence (Patchstack Alliance) in WordPress Post Slider plugin (versions <= 1.6.7).
No patched version is available. No reply from the vendor.
CPE | Name | Operator | Version |
---|---|---|---|
post slider | le | 1.6.7 |