Broken Access Control vulnerability in WPML Multilingual CMS premium plugin <= 4.5.10 on WordPress allows users with a subscriber or higher user role to change plugin settings (selected language for legacy widgets, the default behavior for media content).
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Patchstack
Published: 2022-11-09T00:00:00
Updated: 2022-11-17T00:00:00
Reserved: 2022-09-14T00:00:00
Link: CVE-2022-38461
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-11-17T22:15:10.393
Modified: 2023-07-21T20:25:45.017
Link: CVE-2022-38461
JSON object: View
Redhat Information
No data.
CWE