Lucene search
WPScanCVELIST:CVE-2023-7074HistoryJan 29, 2024 - 2:44 p.m.
CVE-2023-7074 WP Social Bookmark Menu <= 1.2 - Settings Update via CSRF
2024-01-2914:44:15
WPScan
www.cve.org
3
cve-2023-7074
wp social bookmark menu
settings update
csrf attack
wordpress plugin
The WP SOCIAL BOOKMARK MENU WordPress plugin through 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.
CNA Affected
[
{
"vendor": "Unknown",
"product": "WP SOCIAL BOOKMARK MENU",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "1.2"
}
],
"defaultStatus": "affected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
wpexploit
wpexploit
WP Social Bookmark Menu <= 1.2 - Settings Update via CSRF
2024-01-03 00:00:00
prion
prion
Cross site request forgery (csrf)
2024-01-29 15:15:00
cve
cve
CVE-2023-7074
2024-01-29 15:15:09
nvd
nvd
CVE-2023-7074
2024-01-29 15:15:09
wpvulndb
wpvulndb
WP Social Bookmark Menu <= 1.2 - Settings Update via CSRF
2024-01-03 00:00:00
wordfence
wordfence