The IgnitionDeck Crowdfunding Platform plugin for WordPress has a security flaw in versions up to 1.9.8. This means that certain functions in the plugin can be accessed without proper authorization. Attackers with subscriber access or higher can use this vulnerability to perform actions through AJAX, such as changing the permalink structure or plugin settings.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
