ThreatPress

WordPress Vulnerabilities Database

Back

WordPress InfiniteWP Client Plugin <= 1.3.7 - Privilege Escalation

Product
InfiniteWP Client
Description
Because of this vulnerability, Javascript or iframe malware, spam links or defacement messages could be injected.
Solution
Upgrade the plugin.
Classification
Type BYPASS
References
Blog Sucuri
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.7
Fixed In 1.3.8
Disclosure date
2014-12-02
Submitter
ThreatPress