The Church Admin plugin for WordPress has a security vulnerability that allows unauthorized users to change data without permission. This is because it does not check for the proper permission before allowing the deletion of households. This means that even users with a lower access level, such as subscribers, can delete households.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
