User Meta Manager [Privilege Escalation]

Description

User Meta Manager for WordPress plugin up to v3.4.6 suffers from a privilege escalation vulnerability. A registered user can modify the meta information of any registered user, including himself. This way he can modify wp_capabilities meta to escalate his account to a full privileged administrative account.

PoC

Solution

Update to version 3.4.7