CVE-2021-24190
CVE-2021-24190 affects the WooCommerce Conditional Marketing Mailer WordPress plugin prior to version 1.5.2. Low-privilege users can exploit the AJAX action cp_plugins_do_button_job_later_callback to install any plugin (including specific versions) from the WordPress repository and to activate ar...