CVE-2022-3881 WPTools < 3.43 - Subscriber+ Arbitrary Plugin Installation

The WP Tools Increase Maximum Limits, Repair, Server PHP Info, Javascript errors, File Permissions, Transients, Error Log WordPress plugin before 3.43 does not have proper authorisation and CSRF in an AJAX action, allowing any authenticated users, such as subscriber to call it and install and...

WordPress plugin WPTools 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

WordPress WPTools plugin <= 3.42 - Auth. Arbitrary Plugin Installation vulnerability

Auth. Arbitrary Plugin Installation vulnerability discovered by Lana Codes in WordPress WPTools plugin versions = 3.42. Solution Update the WordPress WP Tools plugin to the latest available version at least 3.43...

WordPress WPTools Masonry Gallery & Posts For Divi plugin < 3.1.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WPTools Masonry Gallery & Posts For Divi plugin versions 3.1.2. Solution Update the WordPress WPTools Masonry Gallery & Posts For Divi plugin to the latest available version at least 3.1.2...

WordPress WPTools Masonry Gallery & Posts For Divi plugin < 3.1.2 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress WPTools Masonry Gallery & Posts For Divi plugin versions 3.1.2. Solution Update the WordPress WPTools Masonry Gallery & Posts For Divi plugin to the latest available version at least 3.1.2...