Description
WordPress Plugin WPBakery Page Builder Clipboard is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently update the license options. WordPress Plugin WPBakery Page Builder Clipboard version 4.5.7 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.5.8 or latest
References
https://sploitus.com/exploit?id=WPEX-ID:354B98D8-46A1-4189-B347-198701EA59B9
https://codecanyon.net/item/visual-composer-clipboard/8897711#item-description__changelog
Related Vulnerabilities
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8644)
WordPress Plugin Media Library Assistant Multiple Cross-Site Scripting Vulnerabilities (2.73)
Ruby CVE-2018-16395 Vulnerability (CVE-2018-16395)
PHP NULL Pointer Dereference Vulnerability (CVE-2018-14884)
Artifactory Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2021-41834)