Description
WordPress Plugin WP Datepicker is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently update arbitrary options. WordPress Plugin WP Datepicker version 2.1.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.1.1 or latest
References
Related Vulnerabilities
Jboss EAP Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2019-9518)
MySQL CVE-2014-4233 Vulnerability (CVE-2014-4233)
Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-12629)
MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4452)