The FAQs Manager plugin for WordPress is not secure in versions up to and including 1.0. This means that someone who is not authenticated (not logged in) can change the plugin settings without permission. This can be done by sending a misleading link to a site administrator and getting them to click it.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
