2 matches found
CVE-2020-9457
The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users with minimal privileges to import custom vulnerable forms and change form settings via classrmformsettingscontroller.php, resulting in privilege escalation...
CVE-2020-9457
CVE-2020-9457 affects the WordPress plugin RegistrationMagic up to version 4.6.0.3. A remote authenticated user with minimal privileges can exploit via the file class_rm_form_settings_controller.php to import vulnerable custom forms and modify form settings, resulting in privilege escalation (adm...