Description
WordPress Plugin Thrive Themes Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Themes Builder version 2.2.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2.4 or latest
References
Related Vulnerabilities
Oracle JRE CVE-2014-0446 Vulnerability (CVE-2014-0446)
Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2212)
WordPress Plugin Modern Events Calendar Lite Arbitrary File Upload (7.11.0)
WebLogic CVE-2021-35552 Vulnerability (CVE-2021-35552)
MongoDb Improper Authentication Vulnerability (CVE-2014-8180)