Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin InstaWP Connect-1-click WP Staging Migration Security Bypass - CVE-2024-4898 - Vulnerability Database
WP Plugin Instawp Connect

WordPress Plugin InstaWP Connect-1-click WP Staging Migration Security Bypass - CVE-2024-4898

Critical
Reference: CVE-2024-4898
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-4898
Title: WordPress Plugin InstaWP Connect-1-click WP Staging Migration Security Bypass
Overview:

WordPress Plugin InstaWP Connect-1-click WP Staging Migration is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently connect the site to InstaWP API edit arbitrary site options and create administrator accounts. WordPress Plugin InstaWP Connect-1-click WP Staging Migration version 0.1.0.38 is vulnerable prior versions may also be affected.