Description
WordPress Plugin Stylish Price List is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently upload arbitrary images. WordPress Plugin Stylish Price List version 6.9.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 6.9.1 or latest
References
Related Vulnerabilities
OpenSSL Resource Management Errors Vulnerability (CVE-2012-0050)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6098)
Joomla CVE-2006-4469 Vulnerability (CVE-2006-4469)
WordPress Plugin CSS Plus Multiple Unspecified Vulnerabilities (1.3.1)
Moodle Credentials Management Errors Vulnerability (CVE-2012-0794)