Description
WordPress Plugin Stock Ticker is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently purge stock cache. WordPress Plugin Stock Ticker version 3.23.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.23.1 or latest
References
Related Vulnerabilities
WordPress Plugin Free counter Cross-Site Scripting (1.1)
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8520)
WordPress Plugin MyLiveChat-Free Live Chat Plugin for WordPress Cross-Site Scripting (2.0.1)
Roundcube Improper Input Validation Vulnerability (CVE-2011-1492)