What is CVE-2020-11514?

CVE-2020-11514 is a vulnerability in N/a. Published 2020-04-07.

Is CVE-2020-11514 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2020-11514

The Rank Math plugin through 1.0.40.2 for WordPress allows unauthenticated remote attackers to update arbitrary WordPress metadata, including the ability to escalate or revoke administrative privileges for existing users via the unsecured…

EPSS: 0.655 (98.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

20142995/nuclei-templates
ARPSyndicate/cve-scores

References

rankmath.com/changelog/ (x_refsource_MISC)
wordpress.org/plugins/seo-by-rank-math/ (x_refsource_MISC)
www.wordfence.com/blog/2020/03/critical-vulnerabilities-affecting-over-200000-s… (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-11514?: CVE-2020-11514 is a vulnerability in N/a. Published 2020-04-07.
Is CVE-2020-11514 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.