JVN#89259622: WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery

2020-02-18T00:00:00
ID JVN:89259622
Type jvn
Reporter Japan Vulnerability Notes
Modified 2020-02-18T00:00:00

Description

## Description

WordPress Plugin "Easy Property Listings" provided by Merv Barrett contains a cross-site request forgery vulnerability (CWE-352).

## Impact

If a user views a malicious page while logged in, unintended operations may be performed.

## Solution

Update the plugin
Update the plugin according to the information provided by the developer.

## Products Affected

  • Easy Property Listings versions prior to 3.4