Skip to content
Threat Feed

Product

TheCartPress 1.5.3.6

1 brief RSS
critical advisory

CVE-2021-47932: WordPress TheCartPress Unauthenticated Privilege Escalation

WordPress TheCartPress version 1.5.3.6 contains an unauthenticated privilege escalation vulnerability, CVE-2021-47932, allowing attackers to create administrator accounts via crafted POST requests to the AJAX handler.

TheCartPress 1.5.3.6 wordpress privilege-escalation unauthenticated CVE-2021-47932
2r 1t 1c