Description
WordPress Plugin Related Posts Lite is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently insert a new user with administrative privileges. WordPress Plugin Related Posts Lite version 1.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.11 or latest
References
Related Vulnerabilities
jQuery Validation Uncontrolled Resource Consumption Vulnerability (CVE-2021-21252)
WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.7.0)
WordPress Plugin WP to Twitter Cross-Site Request Forgery (3.2.9)
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-4624)