Description
WordPress Plugin Custom Field Suite is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently export and re-import setup configuration. WordPress Plugin Custom Field Suite version 2.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.4.1 or latest
References
Related Vulnerabilities
WordPress 4.9.x Multiple Vulnerabilities (4.9 - 4.9.21)
Joomla! Core 1.5.x Information Disclosure (1.5.0 - 1.5.11)
Jenkins Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-21607)
Joomla Improper Access Control Vulnerability (CVE-2015-7899)
Apache Tomcat Resource Management Errors Vulnerability (CVE-2011-0534)