Description
WordPress Plugin CF7 Manual Spam Blocker is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin CF7 Manual Spam Blocker version 1.0 is vulnerable.
Remediation
Update to plugin version 1.1.0 or latest
References
Related Vulnerabilities
Liferay Portal Incorrect Default Permissions Vulnerability (CVE-2021-33327)
Internet Information Services Other Vulnerability (CVE-2001-0337)
WordPress Plugin Newsletter-Send awesome emails from WordPress Open Redirect (3.7.0)
WordPress Plugin WP Infusionsoft WooCommerce Cross-Site Scripting (1.0.8)
WordPress Plugin WooCommerce Checkout For Digital Goods Cross-Site Request Forgery (2.2)