RSS   Vulnerabilities for 'Infinitewp client'   RSS

2020-02-06
 
CVE-2020-8772

CWE-862
 

 
The InfiniteWP Client plugin before 1.9.4.5 for WordPress has a missing authorization check in iwp_mmb_set_request in init.php. Any attacker who knows the username of an administrator can log in.

 

 >>> Vendor: Revmakx 2 Products
Infinitewp client
Backup and staging by wp time capsule


Copyright 2024, cxsecurity.com

 

Back to Top