ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Delete Duplicate Posts plugin <= 4.1.9.4 - Authenticated Option Update vulnerability (Fremius Library security issue)

Product
Delete Duplicate Posts
Description
Authenticated Option Update vulnerability (Fremius Library security issue) in WordPress Delete Duplicate Posts plugin (versions <= 4.1.9.4).
Solution
Update the WordPress Delete Duplicate Posts plugin to the latest available version (at least 4.1.9.5).
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
Plugin changelog
Security issue description
CVE
Name CVE-N/A
Versions
Affected In <= 4.1.9.4
Fixed In 4.1.9.5
Disclosure date
2019-03-05
Submitter
ThreatPress