WordPress ProfilePress wp-user-avatar plugin users privilege escalation CVE-2021-34621 Scanner

Details
Stay Up To Date
Asset Type

DOMAIN,IP

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

10

WordPress ProfilePress wp-user-avatar plugin users privilege escalation CVE-2021-34621 Scanner Detail

WordPress ProfilePress wp-user-avatar plugin allows privilege escalation from zero to admin vulnerability.

A vulnerability in the user registration component found in the ~/src/Classes/RegistrationAuth.php file of the ProfilePress WordPress plugin made it possible for users to register on sites as an administrator. This issue affects versions 3.0.0 - 3.1.3. .

Some Advice for Common Problems

You should apply related fixes.

Community Discussions

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service