[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fr4jQ47EuI5Y5Z4YycEQu6Stjj1PGbgjJjkQbD0wFxek":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"WF-67ae29ee-ec3d-41d2-8691-ba1c615d243d-meow-gallery","meow-gallery-gallery-block-missing-authorization-to-arbitrary-options-update","Meow Gallery (+ Gallery Block) \u003C= 4.1.9 - Missing Authorization to Arbitrary Options Update","The Meow Gallery plugin for WordPress is vulnerable to Arbitrary Options Update via the REST API in versions up to, and including, 4.1.9. This makes it possible for unauthenticated attackers to modify otherwise restricted arbitrary site options. This can be leveraged to create new administrative user accounts.","meow-gallery",null,"\u003C=4.1.9","4.2.0","high",8.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Missing Authorization","2021-09-02 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F67ae29ee-ec3d-41d2-8691-ba1c615d243d?source=api-prod",873]