Lucene search
WPScanCVE-2023-6385HistoryApr 10, 2024 - 5:15 a.m.
CVE-2023-6385
2024-04-1005:15:47
WPScan
web.nvd.nist.gov
34
cve-2023-6385
reserved
organization
individual
security problem
publicized
details
nvd
The WordPress Ping Optimizer WordPress plugin through 2.35.1.3.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks such as clearing logs.
Affected configurations
Node
wordpress_ping_optimizer_projectwordpress_ping_optimizerRange≤2.35.1.3.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wordpress_ping_optimizer_project | wordpress_ping_optimizer | * | cpe:2.3:a:wordpress_ping_optimizer_project:wordpress_ping_optimizer:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Unknown",
"product": "WordPress Ping Optimizer",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "2.35.1.3.0"
}
],
"defaultStatus": "affected"
}
]Related
nvd
nvd
CVE-2023-6385
2024-04-10 05:15:47
vulnrichment
vulnrichment
CVE-2023-6385 WordPress Ping Optimizer <= 2.35.1.3.0 - Log Clearing via CSRF
2024-04-10 05:00:02
wpvulndb
wpvulndb
WordPress Ping Optimizer <= 2.35.1.3.0 - Log Clearing via CSRF
2024-03-20 00:00:00
cvelist
cvelist
CVE-2023-6385 WordPress Ping Optimizer <= 2.35.1.3.0 - Log Clearing via CSRF
2024-04-10 05:00:02
wpexploit
wpexploit
WordPress Ping Optimizer <= 2.35.1.3.0 - Log Clearing via CSRF
2024-03-20 00:00:00