CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2021/12/13 11:15 a.m.•14 views

CVE-2021-24784

The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack...

6.5CVSS0.0014EPSS

Exploits2References1

OSV•added 2021/12/13 11:15 a.m.•1 views

CVE-2021-24784

The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack...

6.5CVSS6.6AI score0.0014EPSS

Exploits2References1

CVE•added 2021/12/13 10:40 a.m.•44 views

CVE-2021-24784

The CVE concerns the WordPress plugin “WP Admin Logo Changer” (versions

6.5CVSS6.3AI score0.0014EPSS

Exploits2References1Affected Software1

Cvelist•added 2021/12/13 10:40 a.m.•19 views

CVE-2021-24784 WP Admin Logo Changer <= 1.0 - Plugin's Settings Update via CSRF

The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack...

6.6AI score0.0014EPSS

Exploits2References1

wpexploit•added 2021/11/15 12:0 a.m.•156 views

WP Admin Logo Changer <= 1.0 - Plugin's Settings Update via CSRF

The plugin does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack. csrf.submit...

6.5CVSS6.3AI score0.0014EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by