WordPress plugin CRUDLab Google Plus Button 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

PT-2024-36286 · Crudlab · Crudlab Google Plus Button

Name of the Vulnerable Software and Affected Versions: CRUDLab Google Plus Button versions 1.0.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS in the CRUDLab Google Plus Button. This means an attacker can perform unauthoriz...