Three critical security bugs allow for easy privilege escalation to an administrator role. A WordPress plugin installed on more than 100,000 sites has three critical security bugs that each allow ...
A vulnerability in the popular Ultimate Member WordPress plugin enables account takeover by exposing password reset links. The flaw makes it possible for attackers with authenticated contributor-level ...