Description
Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress GFireM Fields plugin (versions <= 1.1.7).
## Solution
No patched version available.
Affected Software
{"id": "PATCHSTACK:AB8C99863AA3401A799217BC049055BB", "vendorId": null, "type": "patchstack", "bulletinFamily": "software", "title": "WordPress GFireM Fields plugin <= 1.1.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability", "description": "Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress GFireM Fields plugin (versions <= 1.1.7).\n\n## Solution\n\n\r\n No patched version available.\r\n ", "published": "2022-02-28T00:00:00", "modified": "2022-02-28T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "href": "https://patchstack.com/database/vulnerability/gfirem-fields/wordpress-gfirem-fields-plugin-117-toggle-the-debug-mode-via-cross-site-request-forgery-csrf-vulnerability", "reporter": "N/A", "references": ["https://wpscan.com/vulnerability/6dae6dca-7474-4008-9fe5-4c62b9f12d0a", "https://wordpress.org/plugins/gfirem-fields/"], "cvelist": [], "immutableFields": [], "lastseen": "2022-06-01T19:20:17", "viewCount": 1, "enchantments": {"score": {"value": 4.7, "vector": "NONE"}, "affected_software": {"major_version": [{"name": "gfirem fields", "version": 1}]}, "vulnersScore": 4.7}, "_state": {"score": 1659860190, "dependencies": 1660016401, "affected_software_major_version": 1666695388}, "_internal": {"score_hash": "a2eb2e0ca050cb39f486ddf6db0a12d6"}, "affectedSoftware": [{"version": "1.1.7", "operator": "le", "name": "gfirem fields"}], "vendor_cvss": {"score": "3.1", "severity": "Medium severity"}, "owasp": "A5: Broken Access Control", "classification": "Cross Site Request Forgery (CSRF)"}
{}
WordPress GFireM Fields plugin <= 1.1.7 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability