Description
WordPress Plugin Thrive Dashboard is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Dashboard version 2.3.9.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.3.9.3 or latest
References
Related Vulnerabilities
MongoDb Out-of-bounds Read Vulnerability (CVE-2017-14227)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-8394)
WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2)
LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-48008)