WordPress plugin SafetyForms 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

WordPress SafetyForms plugin <= 1.0.0 - CSRF to SQL Injection vulnerability

CSRF to SQL Injection vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin SafetyForms versions = 1.0.0...

WordPress SafetyForms Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software SafetyForms Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Request Forgery CSRF CVE CVE-2024-49615 Patch priority Low CVSS severity Low 8.2 Developer Claim ownership PSID 8ae3175dd1dc Credits João Pedro S Alcântara Kinorth Requir...