De-baat - Store Locator Plus CVE

Filtered by vendor De-baat Subscribe

Filtered by product Store Locator Plus

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-24289	1 De-baat	1 Store Locator Plus	2021-05-24	6.5 MEDIUM	8.8 HIGH
There is functionality in the Store Locator Plus for WordPress plugin through 5.5.14 that made it possible for authenticated users to update their user meta data to become an administrator on any site using the plugin.

Vulnerabilities (CVE)