The WPGraphQL 0.2.3 plugin for WordPress allows remote malicious users to register a new user with admin privileges, whenever new user registrations are allowed. This is related to the registerUser mutation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpengine wpgraphql 0.2.3 |