Description
WordPress Plugin Thrive Themes Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Themes Builder version 2.2.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2.4 or latest
References
Related Vulnerabilities
WordPress Plugin Translate Multilingual sites-TranslatePress Cross-Site Scripting (2.0.8)
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-39206)
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-1184)
WordPress Plugin Gravity Forms Arbitrary File Upload (1.8.19)