• WordPress Plugin DW Question & Answer is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently e.g. delete or edit answers. WordPress Plugin DW Question & Answer version 1.2.9 is vulnerable; prior versions may also be affected.

• Update to plugin version 1.2.10 or latest

• • http://secunia.com/advisories/58967/

• 

• CWE-264

• Missing Update Authentication Bypass

• WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.8)
• WordPress 2.0.4 Multiple Security Vulnerabilities (2.0.4 - 2.0.4)
• WordPress Plugin Related Posts by Zemanta Cross-Site Request Forgery (1.3.1)
• WordPress Plugin User Role by BestWebSoft Cross-Site Scripting (1.5.1)
• WordPress Plugin Blunt GA Cross-Site Scripting (4.0.0)