The Electric Studio Client Login plugin for WordPress is not secure in versions up to and including 0.8.1. This means that someone with administrator-level permissions or higher can insert malicious code into web pages. This code will then run when someone visits the page. This affects websites that have multiple sites or have disabled the feature called ‘unfiltered_html’.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
