Lucene search
Francesco CarlucciPATCHSTACK:629E68BA7D81DE9BF7EEE170A8020D11HistoryNov 15, 2021 - 12:00 a.m.
WordPress Wp Limits plugin <= 1.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Plugin Settings Update
2021-11-1500:00:00
Francesco Carlucci
patchstack.com
5
0.001 Low
EPSS
Percentile
25.9%
Cross-Site Request Forgery (CSRF) vulnerability leading to Plugin Settings Update discovered by Francesco Carlucci in WordPress Wp Limits plugin (versions <= 1.0).
Solution
Deactivate and delete. This plugin has been closed as of October 4, 2021 and is not available for download. This closure is temporary, pending a full review.
Related
wpvulndb
wpvulndb
WP Limits <= 1.0 - Plugin's Settings Update via CSRF
2021-11-15 00:00:00
cnvd
cnvd
WordPress WP Limits plugin cross-site request forgery vulnerability
2021-12-18 00:00:00
wpexploit
wpexploit
WP Limits <= 1.0 - Plugin's Settings Update via CSRF
2021-11-15 00:00:00
nvd
nvd
CVE-2021-24818
2021-12-13 11:15:08
prion
prion
Cross site request forgery (csrf)
2021-12-13 11:15:00
cvelist
cvelist
CVE-2021-24818 WP Limits <= 1.0 - Plugin's Settings Update via CSRF
2021-12-13 10:41:00
cve
cve
CVE-2021-24818
2021-12-13 11:15:08