Post Hit Counter <= 1.3.2 is vulnerable to Broken Access Control

The Post Hit Counter plugin for WordPress is vulnerable to unauthorized use of functionality due to a missing capability check on one of its functions in versions up to, and including, 1.3.2. This makes it possible for authenticated attackers, with subscriber-level access and above, to make use of this functionality intended for higher privilege users.