Description
WordPress Plugin CF7 Manual Spam Blocker is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin CF7 Manual Spam Blocker version 1.0 is vulnerable.
Remediation
Update to plugin version 1.1.0 or latest
References
Related Vulnerabilities
Undertow CVE-2022-2764 Vulnerability (CVE-2022-2764)
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-40407)
WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.05)
PrestaShop Server-Side Request Forgery (SSRF) Vulnerability (CVE-2024-41651)
WordPress Plugin WordPress Shortcodes-Shortcodes Ultimate Cross-Site Scripting (5.0.6)