Broken Authentication vulnerability leading to unauthenticated post update/create/delete discovered by Tien Nguyen Anh (Patchstack Alliance) in WordPress ActiveDEMAND plugin (versions <= 0.2.27).
Update the WordPress ActiveDEMAND plugin to the latest available version (at least 0.2.28).