Key Information Vulnerability Overview Vulnerability Name: WordPress Team Builder Plugin <= 1.5.7 is vulnerable to Broken Access Control Priority: High priority Affected Versions: <= 1.5.7 Fix Status: No official fix available Risk Risk Level: 7.6 Description: A broken access control issue refers to a missing authorization, authentication, or nonce token check in a function that could lead to an unprivileged user executing a certain higher-privileged action. Mitigation Recommendation: Automatically mitigate vulnerabilities and keep your websites safe Action: Patchstack has issued a virtual patch to mitigate this issue by blocking any attacks until an official fix becomes available. Timeline Report Date: 20 Mar 2023 Early Warning Sent to Patchstack Customers: 04 Jun 2023 Release Date: 06 Jun 2023 Additional Information Plugin Type: Plugin Vulnerable Version: <= 1.5.7