Description
WordPress Plugin Brizy-Page Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin's settings. WordPress Plugin Brizy-Page Builder version 1.0.113 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.0.114 or latest
References
Related Vulnerabilities
WordPress Plugin Integration for Contact Form 7 and Salesforce Cross-Site Scripting (1.2.4)
WordPress Plugin Advanced AJAX Page Loader Arbitrary File Upload (2.7.6)
WordPress Plugin Image Gallery-Responsive Photo Gallery SQL Injection (1.8.9)
Zenphoto Improper Privilege Management Vulnerability (CVE-2018-0610)
WordPress Plugin List Pages Shortcode Cross-Site Scripting (1.7.4)