3 matches found
CVE-2022-1576
creationtimestamp| type| source ---|---|--- 2022-07-11 16:19:33+00:00| seen| https://t.me/cibsecurity/45922...
CVE-2022-1576 WP Maintenance Mode & Coming Soon < 2.4.5 - Subscribed Users Deletion via CSRF
The WP Maintenance Mode & Coming Soon WordPress plugin before 2.4.5 is lacking CSRF when emptying the subscribed users list, which could allow attackers to make a logged in admin perform such action via a CSRF attack...
CVE-2022-1576
The CVE concerns the WP Maintenance Mode & Coming Soon WordPress plugin (pre-2.4.5). The root cause is missing CSRF protection when emptying the subscribed users list, potentially allowing an attacker to induce a logged-in admin to perform this action via a CSRF attack. Reported impact is unautho...