Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in AutomatorWP – The most flexible and powerful no-code automation plugin for WordPress 2.5.0

  • Severity: medium-risk
  • Status: Fixed
  • Publication: January 20, 2023

The AutomatorWP plugin for WordPress is not secure in versions earlier than 2.5.0. This means that someone who is not authorized to make changes to the website can delete important settings if they can get a website administrator to click on a link. This is possible because the plugin does not have the necessary security checks in place.

Detected in:

AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in WordPress fixed vulnerable versions:
AutomatorWP – The #1 automator plugin for no-code automation in WordPress fixed vulnerable versions:
AutomatorWP – The most flexible and powerful no-code automation plugin for WordPress fixed vulnerable versions: >= * <= 2.5.0

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.