Description
WordPress Plugin NextScripts:Social Networks Auto-Poster is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete posts, arbitrary posting in social networks, or update plugin's settings. WordPress Plugin NextScripts:Social Networks Auto-Poster version 4.3.17 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.3.18 or latest
References
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4293)
MySQL CVE-2016-0640 Vulnerability (CVE-2016-0640)
WordPress Plugin BP Group Documents Security Bypass (1.10)
Lighttpd Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4559)
WordPress Plugin OAuth Single Sign On-SSO (OAuth Client) Cross-Site Scripting (6.20.2)