ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Groups Plugin <= 1.4.5 -

Product
Groups
Description
This plugin is prone to a negated role capability H&ling elevated privilege issue.
Solution
Upgrade this plugin.
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
CVE
Name CVE-N/A
Versions
Affected In <= 1.4.5
Fixed In 1.4.6
Disclosure date
2014-08-01