On April 5, 2023 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in WP Data Access, a WordPress plugin that is installed on over 10,000 sites. This flaw makes it possible for an authenticated attacker to grant themselves administrative privileges via a profile update, if the targeted site has the ‘Role Management’ setting enabled.
You may also like
Techniques to Raise Membership Sales For 2024
2024 Membership Sales: Proven Strategies for...
What is Microlearning – Advice For Associations
Benefits of Microlearning: Boost Engagement and...
Try The Divi 5 Alpha Demo Today!
I am back with another Divi 5 update, and today...