WordPress Sync eCommerce NEO plugin <= 1.4 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

2022-02-2800:00:00

N/A

patchstack.com

wordpress

sync ecommerce

neo plugin

csrf

vulnerability

debug mode

cross-site request forgery

Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Sync eCommerce NEO plugin (versions <= 1.4).

Solution

           No patched version available.

wordpress.org/plugins/sync-ecommerce-neo/

wpscan.com/vulnerability/6dae6dca-7474-4008-9fe5-4c62b9f12d0a