InstaWP Connect <= 0.1.0.8 - Missing Authorization to Arbitrary Options Update (Subscriber+)
CVE-2024-22145 InstaWP Connect <= 0108 - Missing Authorization to Arbitrary Options Update (Subscriber+) Description: The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_management_settings function in all versions up to, and including,