3 matches found
CVE-2023-28791
Cross-Site Request Forgery CSRF vulnerability in Gangesh Matta Simple Org Chart plugin = 2.3.4 versions...
CVE-2023-28791
CVE-2023-28791 concerns WordPress plugin Simple Org Chart (versions ≤ 2.3.4). The connected documents indicate a CSRF vulnerability in the plugin’s settings update mechanism caused by missing CSRF checks, enabling an attacker to trigger admin actions via CSRF when a user is authenticated. Impact ...
WordPress Simple Org Chart Plugin <= 2.3.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Simple Org Chart Type Plugin Vulnerable versions = 2.3.4 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-28791 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d350f5ff7457 Credits Elliot Required...