Description
WordPress Plugin PWA for WP & AMP is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change plugin�s settings, or even upload arbitrary files. WordPress Plugin PWA for WP & AMP version 1.7.32 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.33 or latest
References
Related Vulnerabilities
WordPress Plugin Booster for WooCommerce Security Bypass (5.4.3)
Oracle JRE CVE-2012-0499 Vulnerability (CVE-2012-0499)
WordPress Plugin MC4WP:Mailchimp for WordPress Cross-Site Scripting (4.1.6)
PrestaShop CVE-2023-39529 Vulnerability (CVE-2023-39529)
Wordpress Plugin Backup Migration CVE-2023-6271 Vulnerability (CVE-2023-6271)