Full title: Wordpress jQuery mOover Admin Bypass Vulnerability 
Category: web applications
Platform: php
An attacker can change configurations of this Wordpress-Slideshow Plugin without admin-rights. 3 Proof-Examples are enclosed.

# 0day.today @ http://0day.today/