Security Advisory

CVE-2022-3419

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-31 00:00:00

Last updated 2025-05-06 20:12:09

Assigner WPScan

State PUBLISHED

Description

The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and proper CSRF checks, allowing any authenticated users like subscriber to add any role to themselves, such as administrator

← Browse all CVEs View on cve.org ↗