2 matches found
CVE-2020-36714
The Brizy plugin for WordPress is vulnerable to authorization bypass due to a incorrect capability check on the isadministrator function in versions up to, and including, 1.0.125. This makes it possible for authenticated attackers to access and interact with available AJAX functions...
CVE-2020-36714
CVE-2020-36714 affects the Brizy WordPress plugin. The issue is an incorrect capability check in is_administrator(), causing an authorization bypass that lets authenticated attackers access and interact with available AJAX functions. Affected versions are up to and including 1.0.125. The vulnerab...