PT-2024-39259 · WordPress · Ba Book Everything
Name of the Vulnerable Software and Affected Versions: BA Book Everything plugin for WordPress versions up to, and including, 1.6.20 Description: The issue is due to missing or incorrect nonce validation on the my account update function, making it possible for unauthenticated attackers to update...