Description
WordPress Plugin Thrive Headline Optimizer is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Headline Optimizer version 1.3.7.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.3.7.3 or latest
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2007-1889)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)
Oracle Database Server CVE-2008-1821 Vulnerability (CVE-2008-1821)
Joomla! Core 3.x.x Multiple Cross-Site Scripting Vulnerabilities (3.0.0 - 3.8.7)
WordPress Plugin cloudsafe365_for_WP 'file' Parameter Remote File Disclosure (1.46)