The stops-core-theme-and-plugin-updates plugin before 8.0.5 for WordPress has insufficient restrictions on option changes (such as disabling unattended theme updates) because of a nonce check error.
References
Link | Resource |
---|---|
https://wordpress.org/plugins/stops-core-theme-and-plugin-updates/#developers | Release Notes |
https://wpvulndb.com/vulnerabilities/9837 | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-08-27 13:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-15650
Mitre link : CVE-2019-15650
CVE.ORG link : CVE-2019-15650
JSON object : View
Products Affected
easyupdatesmanager
- easy_updates_manager
CWE