Description
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently gather information about users that can targeted in further attacks. WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan version 9.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 9.1 or latest
References
https://www.wordfence.com/vulnerability-advisories/#CVE-2022-2939
https://plugins.svn.wordpress.org/wp-cerber/trunk/readme.txt
Related Vulnerabilities
WordPress Plugin Bulk change of posts terms and post types Cross-Site Scripting (1.0)
MySQL CVE-2021-2278 Vulnerability (CVE-2021-2278)
PHP Other Vulnerability (CVE-2007-1378)
Envoy Proxy Incorrect Authorization Vulnerability (CVE-2021-32779)
WordPress Plugin Multiple Page Generator-MPG Cross-Site Request Forgery (3.3.9)