CVE-2023-23640

The CVE-2023-23640 entry concerns the WordPress plugin MainWP UpdraftPlus Extension (versions ≤ 4.0.6). Public sources in the connected documents indicate a Broken Access Control (Missing Authorization) vulnerability that allows a Subscriber-level attacker to activate plugins arbitrarily. Patch g...