2 matches found
CVE-2023-25697
CVE-2023-25697 is a CSRF vulnerability in the WordPress GamiPress plugin affecting versions up to 2.5.6. The issue enables unauthenticated attackers to trigger settings changes. Patch/mitigation: upgrade to version 2.5.7 or apply the vendor-provided fix. The vulnerability has a moderate impact (C...
WordPress GamiPress Plugin <= 2.5.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software GamiPress Type Plugin Vulnerable versions = 2.5.6 Fixed in 2.5.7 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-25697 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 466ccc666256 Credits Dave Jong Patchstack...