This issue was fixed in version 2.4.0. You can update to the latest version by uploading it through the plugin admin panel. Another high privilege setting which was not escaping was the show_on_front setting. This is a high risk setting and must be validated for high risk users such as admins.
Another high privilege setting which was not escaping was the show_on_front setting. This is a high risk setting and must be validated for high risk users such as admins. Some of the user permissions checks in Float to Top were not correctly handling the WP_ Kinneloa_In_Nonceable_Tags filter, which could allow attackers to bypass the permission checks.
Some of the user permissions checks in were not correctly handling the WP_ Kinneloa_In_Nonceable_Tags filter, which could allow attackers to bypass the permission checks. Another unfixed vulnerability was that Float to Top does not escape the show_on_front setting.
Another unfixed vulnerability was that does not escape the show_on_front setting. Some of the user permissions checks in Float to Top were not correctly handling the WP_ Kinneloa_In_Nonceable_Tags filter, which could allow attackers to bypass the permission checks.
Some of the user permissions checks in were not correctly handling the WP_ Kinneloa_In_Nonceable_Tags filter, which could allow attackers to bypass the permission checks. Another unfixed
What is WP-Knievel?
WP-Knievel is a WordPress plugin that allows you to put any link on your website in the top of the page. It also allows for more customization options.
Timeline
Published on: 09/19/2022 14:15:00 UTC
Last modified on: 09/21/2022 06:26:00 UTC