The Binary MLM Plan plugin vulnerability arises from an insecure direct object reference, allowing authenticated users with the bmp_user role to access other users' payout details. This flaw is present in versions up to and including 3.0 and involves improper access controls in the payout detail function.
We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.