Cross-Site Request Forgery (CSRF) vulnerability that leads to Remote Code Execution (RCE) found by Paul Dannewitz in WordPress Widget Logic plugin (versions <= 5.9.0).
Update the WordPress Widget Logic plugin to the latest available version (at least 5.10.2).
CPE | Name | Operator | Version |
---|---|---|---|
widget logic | le | 5.9.0 |