The TH Variation Swatches plugin for WordPress has a security vulnerability that allows unauthenticated attackers to delete plugin settings. This vulnerability affects versions up to 1.2.7 of the plugin and is caused by the missing or incorrect validation of nonces on the delete_settings function. This means that attackers can make a forged request
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
