Description
WordPress Plugin Shortcoder-Create Shortcodes for Anything is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently call an AJAX action. WordPress Plugin Shortcoder-Create Shortcodes for Anything version 6.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.3.1 or latest
References
Related Vulnerabilities
WordPress Plugin Gallery-Photo Albums-Portfolio Cross-Site Scripting (1.2.25)
Oracle JRE CVE-2012-4681 Vulnerability (CVE-2012-4681)
concrete5 Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2020-24986)
MySQL CVE-2013-3808 Vulnerability (CVE-2013-3808)
WordPress Plugin CYSTEME Finder, the admin files explorer Unspecified Vulnerability (1.7)