Importance (CVSS3.0)
★★★★★★★☆☆☆ 7.5/ 10 - High
Details
A Insecure Direct Object References(IDOR) was discovered in WordPress WP Private Message Plugin.
Solutions
Update the WordPress WP Private Message Plugin to the newest version (1.6.0 and newer).
Source
We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.
“[WordPress WP Private Message Plugin](versions 1.0.6 and older) Vulnerability in Insecure Direct Object References(IDOR)”, by WS Security is licensed under CC BY 4.0.