4.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
43.6%
The acf-better-search (aka ACF: Better Search) plugin before 3.3.1 for WordPress allows wp-admin/options-general.php?page=acfbs_admin_page CSRF.
wordpress.org/plugins/acf-better-search/#developers
wpvulndb.com/vulnerabilities/9399
www.pluginvulnerabilities.com/2019/06/26/cross-site-request-forgery-csrf-settings-change-vulnerability-in-acf-better-search/