QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-9457

Back to search

CVE-2020-9457

Published: Mar 6, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

The RegistrationMagic plugin through 4.6.0.3 for WordPress allows remote authenticated users (with minimal privileges) to import custom vulnerable forms and change form settings via class_rm_form_settings_controller.php, resulting in privilege escalation.

VendorProductVersions

n/a

n/a

affected
n/a

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now