Lucene search
WPScanCVELIST:CVE-2023-4318HistorySep 11, 2023 - 7:46 p.m.
CVE-2023-4318 Herd Effects < 5.2.4 - Effect Deletion via CSRF
2023-09-1119:46:05
WPScan
www.cve.org
wordpress plugin
herd effects
csrf attack
effect deletion
arbitrary access
The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack
CNA Affected
[
{
"vendor": "Unknown",
"product": "Herd Effects",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "5.2.4"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
wpvulndb
wpvulndb
Herd Effects < 5.2.4 - Effect Deletion via CSRF
2023-08-21 00:00:00
cve
cve
CVE-2023-4318
2023-09-11 20:15:12
prion
prion
Cross site request forgery (csrf)
2023-09-11 20:15:00
nvd
nvd
CVE-2023-4318
2023-09-11 20:15:12
wpexploit
wpexploit
Herd Effects < 5.2.4 - Effect Deletion via CSRF
2023-08-21 00:00:00
wordfence
wordfence