Report
The JupiterX Core plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on multiple functions in versions 3.0.0 through 3.3.0. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to perform unauthorized actions. NOTE: This issue only affects the premium version of the plugin.
Score:5.4
Severity:Medium
Version:3.0.0-3.3.0
There is a patch available in v3.3.5 and we strongly recommend you update to this version as soon as possible.
