Description
WordPress Plugin InfiniteWP Client is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently disable a users web site by putting it in maintenance mode if admin username is known. WordPress Plugin InfiniteWP Client version 1.3.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.3.8 or latest
References
Related Vulnerabilities
WordPress Plugin Poll, Survey, Form & Quiz Maker by OpinionStage Unspecified Vulnerability (15.0.0)
Apache HTTP Server Integer Overflow or Wraparound Vulnerability (CVE-2025-55753)
PHP CVE-2009-3559 Vulnerability (CVE-2009-3559)
Apache Traffic Server Integer Overflow or Wraparound Vulnerability (CVE-2018-9481)