CVE-2018-20714
The CVE-2018-20714 entry concerns the WordPress WooCommerce plugin (pre-3.4.6). The vulnerability is a File Deletion flaw in the plugin’s logging system that allows deleting woocommerce.php, resulting in missing privilege checks and enabling a shop manager to escalate to administrator. Affected v...