Cross-Site Request Forgery (CSRF) vulnerability leading to Preset Settings Change discovered by Dave Jong (Patchstack) in WordPress Shortcodes Ultimate plugin (versions <= 5.12.0).
Update the WordPress Shortcodes Ultimate plugin to the latest available version (at least 5.12.1).
CPE | Name | Operator | Version |
---|---|---|---|
shortcodes ultimate | le | 5.12.0 |