Description
WordPress Plugin 10Web Social Feed for Instagram is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin settings. WordPress Plugin 10Web Social Feed for Instagram version 1.3.18 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
WordPress Plugin WP-Syntax Remote PHP Code Execution (0.9.9)
WordPress Plugin Flexible Captcha Multiple Vulnerabilities (3.3)
Drupal Other Vulnerability (CVE-2006-2260)
WebLogic CVE-2020-14640 Vulnerability (CVE-2020-14640)
WordPress Plugin PickPlugins Product Slider for WooCommerce Cross-Site Scripting (1.13.21)