CVE-2022-36387
CVE-2022-36387 affects the WordPress plugin About Me (versions ≤ 1.0.12). The issue is described as a Broken Access Control vulnerability, enabling an authenticated user (e.g., a Subscriber) to perform unsafe actions via AJAX, including arbitrary network creation/deletion . This stems from insuff...