Vulnerabilities (CVE)

Filtered by vendor Hmplugin Subscribe
Filtered by product Hm Multiple Roles
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24602 1 Hmplugin 1 Hm Multiple Roles 2024-11-21 6.5 MEDIUM 8.8 HIGH
The HM Multiple Roles WordPress plugin before 1.3 does not have any access control to prevent low privilege users to set themselves as admin via their profile page