Description
WordPress Plugin Thrive Dashboard is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Dashboard version 2.3.9.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.3.9.3 or latest
References
Related Vulnerabilities
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2023-38371)
ownCloud Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-5866)
Moodle Configuration Vulnerability (CVE-2012-0797)
MongoDb Improper Input Validation Vulnerability (CVE-2012-6619)