Boletines de Vulnerabilidades

Critical Privilege Escalation Vulnerabilities Affect 100K Sites Using Ultimate Member Plugin

Información sobre el sistema
   
Software afectado Wordpress

Descripción
On October 23, 2020, our Threat Intelligence team responsibly disclosed several vulnerabilities in Ultimate Member, a WordPress plugin installed on over 100,000 sites. These flaws made it possible for attackers to escalate their privileges to those of an administrator and take over a WordPress site. We initially reached out to the plugin’s developer on October […]

More info:

https://www.wordfence.com/blog/2020/11/critical-privilege-escalation-vulnerabilities-affect-100k-sites-using-ultimate-member-plugin/

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Data
1.0 Advisory issued 2020-11-11
Ministerio de Defensa
CNI
CCN
CCN-CERT