The DW Question & Answer Pro WordPress plugin up to and including 1.3.4 does not check that the comment to edit belongs to the user making the request, allowing any user to edit other comments.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
designwall dw question \\& answer |