Description
WordPress Plugin WPQA-Builder forms Addon For WordPress is prone to a insecure direct object reference (IDOR) vulnerability. Exploiting this issue may allow an attacker to inflate follower counts of others by sending repeat follow requests. WordPress Plugin WPQA-Builder forms Addon For WordPress version 5.9.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 5.9.3 or latest
References
Related Vulnerabilities
XWiki Missing Authorization Vulnerability (CVE-2022-23617)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-6311)
Apache Traffic Server CVE-2023-30631 Vulnerability (CVE-2023-30631)
WordPress Plugin Swipe Checkout for WooCommerce Cross-Site Scripting (2.7.1)