ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Form Lightbox Plugin - BYPASS

Product
Form Lightbox
Description
This vulnerability allows the attackers to update any option in the WordPress database. It includes gaining an admin access.
Solution
There is no fix, because this plugin is no longer in the WordPress repository.
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
Github
CVE
Name CVE-N/A
Versions
Affected In <= 1.0
Fixed In 1.1
Disclosure date
2016-07-19
Credits
Martin Pouliot