PeepSo <= 1.6.0 - Authenticated Privilege Escalation



Description
Unfiltered input allows a logged in user to escalate their permissions to that of an Administrator.

Affects Plugin

fixed in version 1.6.1

References

CVE 2016-10968
URL http://www.pritect.net/blog/peepso-1-6-0-logged-user-privilege-escalation

Classification

Type PRIVESC
OWASP Top 10 A2: Broken Authentication and Session Management
CWE CWE-269

Miscellaneous

Submitter James Golovich
Submitter Website http://pritect.net
Submitter Twitter Pritect
Views 4657
Verified No
WPVDB ID 8535

Timeline

Publicly Published 2016-06-29 (about 3 years ago)
Added 2016-06-30 (about 3 years ago)
Last Updated 2019-09-16 (5 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin