WordPress Plugin Vulnerabilities

Option Tree < 2.7.3 - Object Injection Bypass

Description

The OptionTree WordPress plugin was affected by an Object Injection Bypass security vulnerability.

Affects Plugins

Plugin icon
option-tree
Fixed in 2.7.3

References

CVE
CVE-2019-15320
CVE
CVE-2019-15321

Miscellaneous

Verified
No
WPVDB ID
d46f94df-8050-40ed-a8af-5a945fb93f3f

Timeline

Publicly Published
2019-05-19 (about 6 years ago)
Added
2019-08-22 (about 6 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2016-03-03
Title
Antioch Theme - Arbitrary File Download
Published
2019-04-11
Title
YellowPencil Visual CSS Style Editor <= 7.2.0 - Unauthenticated Arbitrary Options Updates
Published
2024-05-21
Title
Element Pack Elementor Addons < 5.6.4 - Form Submission Admin Email Bypass
Published
2023-12-27
Title
Build App Online < 1.0.22 - Unauthenticated Account Takeover via Weak Password Reset Mechanism
Published
2016-06-21
Title
WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post