The Directorist WordPress plugin prior to 7.4.2.2 suffers from an IDOR vulnerability which an attacker can exploit to change the password of arbitrary users instead of his own.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wpwax directorist |