关键信息 漏洞名称: WordPress Material Dashboard Plugin <= 1.4.5 is vulnerable to Privilege Escalation 优先级: High priority CVSS评分: 9.8 风险: This vulnerability is highly dangerous and expected to become mass exploited. 受影响版本: <= 1.4.5 修复版本: 1.4.6 发布时间: 28 March 2025 by Patchstack 漏洞类型: Privilege Escalation 描述: This could allow a malicious actor to escalate their low privileged account to something with higher privileges. After this they could take full control of the website if high privileges are gained. 解决方案: - Automatically mitigate vulnerabilities and keep your websites safe using Patchstack's virtual patch. - Update to version 1.4.6 or later. 时间线: - Reported by LVT-tholv2k on 21 Mar 2025 - Early warning sent out to Patchstack customers on 28 Mar 2025 - Published by Patchstack on 30 Mar 2025