Description
WordPress Plugin Profile Builder-User Profile & User Registration Forms is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently gain administrative privileges. WordPress Plugin Profile Builder-User Profile & User Registration Forms version 3.1.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.1.1 or latest
References
https://twitter.com/NomanRiffat/status/1226966011280314370
https://plugins.svn.wordpress.org/profile-builder/trunk/readme.txt