WordPress Kenta Companion plugin <= 1.3.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Kenta Companion versions = 1.3.3...

WordPress Kenta Companion Plugin < 1.1.9 is vulnerable to Cross Site Scripting (XSS)

Software Kenta Companion Type Plugin Vulnerable versions 1.1.9 Fixed in 1.1.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 66320b68639d Credits Rafie Muhammad Patchstack Required...