Log out
Get PRO

Latest

Access violation vulnerability in WordPress CTA – WordPress Call To Action, Sticky CTA, Floating Buttons, Floating Tab Plugin 1.5.6

  • Severity: medium-risk
  • Status: Fixed
  • Publication: October 25, 2023

The WordPress CTA plugin for WordPress has a security issue in versions up to and including 1.5.6. This means that malicious actors can perform unauthorized actions, such as creating new call to actions, without being properly authenticated. This vulnerability could allow them to make changes to data without permission.

Detected in:

WP CTA fixed vulnerable versions:
WP CTA – Call To Action Plugin, Sticky CTA, Floating Buttons, Floating Tab Plugin fixed vulnerable versions:
WP CTA – Call To Action Plugin, Sticky CTA, Sticky Buttons fixed vulnerable versions:
WP CTA – sticky CTA builder, generate leads, promote sales fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.