all InfoSec news
Privilege Escalation Vulnerability Patched Promptly in WP Data Access WordPress Plugin
Wordfence www.wordfence.com
On April 5, 2023 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in WP Data Access, a WordPress plugin that is installed on over 10,000 sites. This flaw makes it possible for an authenticated attacker to grant themselves administrative privileges via a profile update, if the targeted site ...
Read More
The post Privilege Escalation Vulnerability Patched Promptly in WP Data Access WordPress Plugin appeared first on Wordfence.
access administrative privileges april data data access disclosure escalation flaw grant intelligence plugin privilege privilege escalation privileges process research responsible responsible disclosure team threat threat intelligence vulnerabilities vulnerability wordfence wordpress wordpress plugin wordpress security