The Analytify plugin for WordPress, which helps with GA4 analytics, has a security flaw that could allow unauthorized changes to data. This is because the plugin does not properly check for permissions when using the rated() function. This means that attackers who are logged in and have at least Subscriber-level access can change the rated option to true.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
