WordPress Plugin MailUp newsletter sign-up form Security Bypass (1.3.2)

Description
  • WordPress Plugin MailUp newsletter sign-up form is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently modify plugin settings via 'formData=save' requests. WordPress Plugin MailUp newsletter sign-up form version 1.3.2 is vulnerable; prior versions may also be affected.
Remediation
  • Update to plugin version 1.3.3 or latest
References