WordPress Plugin Vulnerabilities
Leaky Paywall < 4.20.9 - Missing Authorization to Price Manipulation
Description
The Leaky Paywall plugin for WordPress is vulnerable to price manipulation in all versions up to, and including, 4.20.8. This is due to the plugin allowing the price field to be user supplied. This makes it possible for unauthenticated attackers to alter the price of memberships.
Affects Plugins
References
Classification
Miscellaneous
Timeline
Publicly Published
2024-04-25 (about 2 months ago)
Added
2024-05-03 (about 2 months ago)
Last Updated
2024-05-03 (about 2 months ago)