The Subscribe2 plugin for WordPress has a security issue that affects all versions up to 10.37. Someone who is not authorized to use the plugin could delete users from the system if they can get an administrator to click on a link that they created. This happens because the plugin does not have the right security measures in place to stop it.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
