In the RegistrationMagic plugin up to and including 4.6.0.3 for WordPress, the user controller allows remote authenticated users (with minimal privileges) to elevate their privileges to administrator via class_rm_user_controller.php rm_user_edit.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
metagauss registrationmagic |