4.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.9%
The Rotating Posts WordPress plugin through 1.11 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
wpscan.com/vulnerability/d34ed713-4cca-4cef-b431-f132f1b10aa6