On April 5, 2023 the Wordfence Threat Intelligence team initiated the responsible disclosure process for a vulnerability we discovered in WP Data Access, a WordPress plugin that is installed on over 10,000 sites. This flaw makes it possible for an authenticated attacker to grant themselves administrative privileges via a profile update, if the targeted site …Read More
The post Privilege Escalation Vulnerability Patched Promptly in WP Data Access WordPress Plugin appeared first on Wordfence.
Be sure to read the original article from Blog – Wordfence here: Read More