Description

wp-admin/plugins.php in WordPress before 3.3.2 allows remote authenticated site administrators to bypass intended access restrictions and deactivate network-wide plugins via unspecified vectors.

Remediation

References

CVE-2012-2402

Related Vulnerabilities

Dot CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-3042)

WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.44)

WordPress 5.5.x Multiple Vulnerabilities (5.5 - 5.5.3)

WordPress Plugin Easy Property Listings Unspecified Vulnerability (2.0)

Dolibarr Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2021-25957)

Severity

Medium

Classification

CVE-2012-2402 CWE-264

Tags

Missing Update Known Vulnerabilities