4 matches found
CVE-2023-0762
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attack...
CVE-2023-0762 Clock In Portal <= 2.1 - Designation Deletion via CSRF
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attack...
CVE-2023-0762
CVE-2023-0762 affects the Clock In Portal - Staff & Attendance Management WordPress plugin (versions up to 2.1). The issue is a lack of CSRF protection when deleting designations, which could allow a logged-in attacker to cause admins to delete designations via CSRF. Public vulnerability records ...
CVE-2023-0762 Clock In Portal <= 2.1 - Designation Deletion via CSRF
The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attack...