Wp-Eventmanager: >> User Profile Avatar Security Vulnerabilities
The WP User Profile Avatar WordPress plugin before 1.0.1 does not properly check for authorisation, allowing authors to delete and update arbitrary avatar
CVSS Score
4.3
EPSS Score
0.001
Published
2024-01-22