Description The plugin is vulnerable to unauthorized access of data due to a missing capability check on the wppb_toolbox_usermeta_handler function allowing authenticated attackers, with contributor-level access and above, to expose sensitive information within user metadata.
CPE | Name | Operator | Version |
---|---|---|---|
eq | 3.10.8 |