CVE-2022-0681
Consolidated details for CVE-2022-0681: The WordPress plugin Simple Membership (pre-4.1.0) does not perform CSRF checks when deleting Transactions, allowing a logged-in admin to delete arbitrary transactions via CSRF. Impact is a CSRF vulnerability enabling unauthorized deletion of transactions b...