Privilege Escalation in Admin Management Extended Plugin for WordPress (CVE-2021-12345)

Privilege Escalation in Admin Management Extended Plugin for WordPress (CVE-2021-12345)

CVE-2015-9390 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled.

Learn more about our Wordpress Pen Testing.