Description The plugin is vulnerable to unauthorized modification of data due to an improper capability check on the fire_cron function in versions up to, and including, 1.24.6. This makes it possible for unauthenticated attackers to trigger the plugin’s cron job.
CPE | Name | Operator | Version |
---|---|---|---|
eq | 1.24.7 |