WordFence Vulnerability found in Apollo13 Framework Extensions
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/apollo13-framework-extensions/apollo13-framework-extensions-1810-missing-authorization
"The Apollo13 Framework Extensions plugin for WordPress is vulnerable to missing authorization due to a missing capability check on an unknown function in versions up to, and including, 1.8.10. This makes it possible for attackers with subscriber-level access, and above, to perform unauthorized actions."
Hi, will the security issue be fixed shortly? Kind Regards
"The Apollo13 Framework Extensions plugin for WordPress is vulnerable to missing authorization due to a missing capability check on an unknown function in versions up to, and including, 1.8.10. This makes it possible for attackers with subscriber-level access, and above, to perform unauthorized actions."
Hi, will the security issue be fixed shortly? Kind Regards
Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Comments
Yes, I was working on this last night and I should finish soon(max 2 days)
Do you have any users with subscriber levels in your WordPress installation?
With kind regards.