CVE-2015-9476

The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates...

WordPress Teardrop theme elevation of privilege vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.Teardrop theme is a photo website theme plugin used in it. WordPress Teardrop theme has an elevation of privilege...

CVE-2015-9476

The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates...

Input validation

The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates...

CVE-2015-9476

CVE-2015-9476 involves WordPress Teardrop theme (v1.8.1) with insufficient restrictions on option updates. The vulnerability allows privilege escalation by any authenticated user who can trigger option changes (e.g., altering default_role, registration state), enabling command/code execution on t...

CVE-2015-9476

The Teardrop theme 1.8.1 for WordPress has insufficient restrictions on option updates...

WordPress Teardrop Theme <= 1.8.1 - Privilige Escalation

Because of this privilege escalation vulnerability, the attackers can update options and execute commands on the server. Solution Update the theme...