Description
WordPress Plugin CMS Tree Page View is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently move pages. WordPress Plugin CMS Tree Page View version 1.3.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.4 or latest
References
Related Vulnerabilities
Oracle JRE CVE-2012-0501 Vulnerability (CVE-2012-0501)
WordPress Plugin Widgets for SiteOrigin Security Bypass (1.4.2)
WordPress Plugin Magn WP Drag and Drop Upload Arbitrary File Upload (1.1.4)
WordPress Plugin TinyMCE Color Picker Multiple Vulnerabilities (1.1)
WordPress Plugin Indieweb Post Kinds Cross-Site Scripting (1.3.1)