The Blog2Social plugin for WordPress is vulnerable to authorization bypass due to missing capability checks in versions up to, and including, 6.9.11. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to change some plugin settings intended to be modifiable by admins only.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-10-20T07:29:40.331Z
Updated: 2023-10-20T07:29:40.331Z
Reserved: 2022-10-20T19:50:01.410Z
Link: CVE-2022-3622
JSON object: View
NVD Information
Status : Modified
Published: 2023-10-20T08:15:11.847
Modified: 2023-11-07T03:51:31.850
Link: CVE-2022-3622
JSON object: View
Redhat Information
No data.
CWE