The Build App Online plugin for WordPress has a security vulnerability that allows users with access similar to that of a subscriber to modify data without authorization. This vulnerability exists in all versions of the plugin up to version 1.0.19 and allows those users to update any user meta values and grant themselves administrator privileges.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
