CVE-2021-24779
Vulnerability summary: The WP Debugging WordPress plugin (versions before 2.11.0) is affected by an unauthenticated settings update flaw. The update_settings() function is hooked to admin_init and lacks authorization and CSRF checks, allowing unauthenticated users to modify plugin settings. Affec...