The Campaign Monitor Forms by Optin Cat WordPress plugin prior to 2.5.6 does not prevent users with low privileges (like subscribers) from overwriting any options on a site with the string "true", which could lead to a variety of outcomes, including DoS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fatcatapps campaign monitor optin cat |