A vulnerability was found in wclovers WCFM Plugin up to 6.7.12 on WordPress. It has been classified as problematic. Affected is the function
WCFM_Customers_Manage_Controller::processing
. The manipulation leads to authorization bypass.
This vulnerability is traded as CVE-2024-8290. It is possible to launch the attack remotely. There is no exploit available.