CodeRevolution Crawlomatic Multisite Scraper Post Generator Broken Access Control Vulnerability
Vulnerability
A missing authorization vulnerability has been identified in the CodeRevolution Crawlomatic Multisite Scraper Post Generator plugin for WordPress, affecting versions through 2.6.8.2. This vulnerability allows exploitation of improperly configured access control security levels, potentially enabling unprivileged users to perform actions reserved for higher privileges.
Impact
Exploitation of this vulnerability could lead to unauthorized users gaining access to functions or data that require higher privileges, allowing them to perform actions they should not be able to.
Remediation
Users of the CodeRevolution Crawlomatic Multisite Scraper Post Generator plugin should update to version 2.6.9 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.