cleantalk
Vulnerabilities and Security Researches

Easy Digital Downloads – Courses, 7e57cd4f4859826de00a8e2b09ee24fb7f2d824b

CVE, Research URL

7e57cd4f4859826de00a8e2b09ee24fb7f2d824b

Home page URL

Security reports for Easy Digital Downloads – Courses

Application

Easy Digital Downloads – Courses

Published on
Feb 25, 2019
Research Description
Easy Digital Downloads &#8211; Courses [edd-courses] < 0.1.1 (closed) Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update The Freemius SDK for WordPress is vulnerable to authorization bypass due to a missing capability check on the _get_db_option and _set_db_option functions in versions up to, and including, 2.2.3. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to change site settings and potentially take over the site.
Affected versions
max 0.1.1.
Status
vulnerable
Previous vulnerability researches
MapifyLite (by MapifyPro) (e5bfd53d-0d9a-42f2-8af8-5bb710bac828) , Jun 16, 2026
MapifyLite (by MapifyPro) (6be590d56cf666ad67a6e008b71242e607d966ea) , Jun 16, 2026
MapifyLite (by MapifyPro) (d7a357e358b4eb001b41f84d3531981914480734) , Jun 07, 2024
New vulnerability
WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms &#8211; CRM, Bigin (106a82d219f1a97c15664d44b707383c65d1b2e8) , Jun 16, 2026
WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms &#8211; CRM, Bigin (8ec62534-48e6-4bbc-b1ed-f804d827d70d) , Jun 16, 2026
WP Zoho for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms &#8211; CRM, Bigin (78da7e4ebf17bf04d89df5a7a7492deb53506a60) , Jun 16, 2026
YITH Request a Quote for WooCommerce (afb19988a99bb827ed603c4b85acc24b04caa6fc) , Jun 16, 2026
YITH Request a Quote for WooCommerce (d41f6c2de996f217114b829051c013cc7fe3a490) , Jun 16, 2026