2 matches found
CVE-2026-0912 Toret Manager <= 1.2.7 - Authenticated (Subscriber+) Arbitrary Options Update via AJAX actions
The Toret Manager plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'trmansaveoption' function and on the 'trmansaveoptionitems' in all versions up to, and including, 1.2.7. This makes it possible...
PT-2022-22058 · WordPress · Automatic User Roles Switcher
Name of the Vulnerable Software and Affected Versions: Automatic User Roles Switcher WordPress plugin versions prior to 1.1.2 Description: The issue concerns a lack of proper authorization and CSRF checks, allowing authenticated users, such as subscribers, to add any role to themselves, including...