CVE-2016-10968
CVE-2016-10968 affects the peepso-core plugin for WordPress prior to 1.6.1. The issue is a privilege escalation via PeepSoProfilePreferencesAjax->save(), allowing an authenticated user to elevate privileges (to Administrator) due to the underlying flaw in the saved preferences handling. The NV...