Description
WordPress Plugin Thrive Themes Builder is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently add arbitrary data to a predefined option in the wp_options table. WordPress Plugin Thrive Themes Builder version 2.2.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2.4 or latest
References
Related Vulnerabilities
WordPress Plugin Product Addons & Fields for WooCommerce Arbitrary File Upload (1.1)
WordPress Plugin Simple Retail Menus SQL Injection (4.0.1)
WordPress Plugin AccessPress Social Icons SQL Injection (1.8.0)
Oracle Database Server CVE-2007-2109 Vulnerability (CVE-2007-2109)
Ruby Resource Management Errors Vulnerability (CVE-2008-4310)