Description
WordPress Plugin Absolute Privacy is prone to a security bypass vulnerability. Attackers can exploit this vulnerability to bypass authentication mechanism and gain administrative access to an affected application, which may aid in further attacks. WordPress Plugin Absolute Privacy version 2.0.5 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.6 or latest
References
Related Vulnerabilities
Liferay Portal Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2022-42129)
Oracle JRE CVE-2014-0457 Vulnerability (CVE-2014-0457)
ownCloud Improper Authentication Vulnerability (CVE-2012-4392)
LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-16177)