top of page

Enterprise
Server Infrastructure
Management

Posts

- Feb 6, 2023
- 1 min read

[WordPress WP Private Message Plugin](versions 1.0.6 and older) Vulnerability

Importance (CVSS3.0)

★★★★★★★☆☆☆ 7.5/ 10　 - High

Details

A Insecure Direct Object References(IDOR) was discovered in WordPress WP Private Message Plugin.

Solutions

Update the WordPress WP Private Message Plugin to the newest version (1.6.0 and newer).

Source

Vulnerability details

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress WP Private Message Plugin](versions 1.0.6 and older) Vulnerability in Insecure Direct Object References(IDOR)”, by WS Security is licensed under CC BY 4.0.

Recent Posts

Email Delivery: About Email Sending Functionality in WebSpeed

Case Study: Corporate Website Migration to WebSpeed

[WordPress WooCommerce Checkout Field Manager Plugin](versions 18.0 and older) Vulnerability

bottom of page