Description
WordPress Plugin File Browser, Manager, Backup (+ Database) is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently gain complete access to the plugins' core functionality. WordPress Plugin File Browser, Manager, Backup (+ Database) version 1.23 is vulnerable; prior versions may also be affected.
Remediation
Disable the plugin until a fix is available
References
Related Vulnerabilities
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-20415)
MySQL CVE-2021-35636 Vulnerability (CVE-2021-35636)
WordPress Plugin LearnPress-WordPress LMS Cross-Site Request Forgery (3.2.7.2)
Apache Tomcat 7PK - Security Features Vulnerability (CVE-2002-0493)
WordPress Plugin Float to Top Button Cross-Site Scripting (2.3.6)