Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical2

High0

Medium0

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2026-04-08

CVE-2021-4360 - Controlled Admin Access Plugin

The Controlled Admin Access plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 1.5.5 by not properly restricting access to the configuration page. This makes it possible for attackers to create a new administrator role with unrestricted access.

PLUGIN Controlled Admin Access

CVE-2021-4360

CRITICAL CVSS 9.9 2023-06-07

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2021-24215 - Controlled Admin Access Plugin

An Improper Access Control vulnerability was discovered in the Controlled Admin Access WordPress plugin before 1.5.2. Uncontrolled access to the website customization functionality and global CMS settings, like /wp-admin/customization.php and /wp-admin/options.php, can lead to a complete compromise of the target resource.

PLUGIN Controlled Admin Access

CVE-2021-24215

CRITICAL CVSS 9.8 2021-04-12

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2021-4360 - Controlled Admin Access Plugin

CVE-2021-24215 - Controlled Admin Access Plugin

Company Links

Contact Us