Description
WordPress Plugin SiteGround Security is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently gain access to privileged accounts. WordPress Plugin SiteGround Security version 1.2.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.2.6 or latest
References
Related Vulnerabilities
PostgreSQL Improper Access Control Vulnerability (CVE-2016-0768)
Python Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2183)
WordPress Plugin YOP Poll Cross-Site Scripting (6.2.7)
Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-18836)
WordPress 4.9.x Denial of Service Vulnerability (4.9 - 4.9.4)