Lucene search
PRIOn knowledge basePRION:CVE-2023-0504HistoryMar 27, 2023 - 4:15 p.m.
Cross site request forgery (csrf)
2023-03-2716:15:00
PRIOn knowledge base
www.prio-n.com
2
cross site request forgery
ht politic
wordpress
plugin vulnerability
csrf attack
security issue
The HT Politic WordPress plugin before 2.3.8 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| ht_politic | lt | 2.3.8 |
Related
cve
cve
CVE-2023-0504
2023-03-27 16:15:09
cvelist
cvelist
CVE-2023-0504 HT Politic < 2.3.8 - Arbitrary Plugin Activation via CSRF
2023-03-27 15:37:15
nvd
nvd
CVE-2023-0504
2023-03-27 16:15:09
wpexploit
wpexploit
HT Politic < 2.3.8 - Arbitrary Plugin Activation via CSRF
2023-02-28 00:00:00
wpvulndb
wpvulndb
HT Politic < 2.3.8 - Arbitrary Plugin Activation via CSRF
2023-02-28 00:00:00
wordfence
wordfence