2 matches found
CVE-2019-15863
The ConvertPlus plugin before 3.4.5 for WordPress has an unintended account creation with the none role via a request for variants...
CVE-2019-15863
CVE-2019-15863 affects the WordPress ConvertPlus plugin prior to version 3.4.5. The vulnerability allows unintended account creation (with the none role) via a request for variants, enabling an unauthorized user to create accounts through the plugin’s variant request flow. Impact is user creation...