3 matches found
CVE-2022-3538 Webmaster Tools Verification <= 1.2 - Unauthenticated Arbitrary Plugin Deactivation
The Webmaster Tools Verification WordPress plugin through 1.2 does not have authorisation and CSRF checks when disabling plugins, allowing unauthenticated users to disable arbitrary plugins...
CVE-2022-3538
CVE-2022-3538 affects the Webmaster Tools Verification WordPress plugin (versions through 1.2). The root cause is missing authorization and CSRF protections when disabling plugins, permitting unauthenticated users to disable arbitrary plugins. Documented impact: unauthenticated deactivation of pl...
CVE-2022-3538 Webmaster Tools Verification <= 1.2 - Unauthenticated Arbitrary Plugin Deactivation
The Webmaster Tools Verification WordPress plugin through 1.2 does not have authorisation and CSRF checks when disabling plugins, allowing unauthenticated users to disable arbitrary plugins...