Lucene search
PRIOn knowledge basePRION:CVE-2021-42364HistoryNov 29, 2021 - 7:15 p.m.
Cross site request forgery (csrf)
2021-11-2919:15:00
PRIOn knowledge base
www.prio-n.com
4
The Stetic WordPress plugin is vulnerable to Cross-Site Request Forgery due to missing nonce validation via the stats_page function found in the ~/stetic.php file, which made it possible for attackers to inject arbitrary web scripts in versions up to, and including 1.0.6.
Related
cve
cve
CVE-2021-42364
2021-11-29 19:15:07
cnvd
cnvd
WordPress Plugin Cross-Site Request Forgery Vulnerability (CNVD-2021-102803)
2021-12-01 00:00:00
wpvulndb
wpvulndb
Stetic < 1.0.9 - CSRF to Stored Cross-Site Scripting
2021-11-29 00:00:00
nvd
nvd
CVE-2021-42364
2021-11-29 19:15:07
patchstack
patchstack
cvelist
cvelist