2 matches found
CVE-2021-24711
The delreistereddomains AJAX action of the Software License Manager WordPress plugin before 4.5.1 does not have any CSRF checks, and is vulnerable to a CSRF attack...
CVE-2021-24711
CVE-2021-24711 affects the Software License Manager WordPress plugin prior to 4.5.1. The root cause is that the del_reistered_domains AJAX action lacks CSRF checks, enabling CSRF attacks that could allow an attacker to delete domains arbitrarily. Documented impact is vulnerable to CSRF with poten...