Lucene search

Multiple Roles Security Vulnerabilities - 2023

cve

CVE-2021-4402

The Multiple Roles plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.1. This is due to missing or incorrect nonce validation on the mu_add_roles_in_signup_meta() and mu_add_roles_in_signup_meta_recently() functions. This makes it possible for una...

4.3CVSS

4.3AI Score

0.001EPSS

2023-07-01 06:15 AM