An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functionality and global CMS settings, like /wp-admin/customization.php and /wp-admin/options.php, can lead to a complete compromise of the target resource.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2021-04-12T14:00:48
Updated: 2024-08-03T19:21:18.820Z
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24215
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-04-12T14:15:15.133
Modified: 2024-11-21T05:52:36.693
Link: CVE-2021-24215
Redhat
No data.