3 matches found
CVE-2023-28986 WordPress Affiliates Manager Plugin <= 2.9.20 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in wp.Insider, wpaffiliatemgr Affiliates Manager plugin = 2.9.20 versions...
CVE-2023-28986
CVE-2023-28986 is a CSRF vulnerability in the WordPress plugin Affiliates Manager (wpaffiliatemgr), affected versions ≤ 2.9.20. The issue is publicly documented across multiple sources (Red Hat, NVD, Patchstack, CVE listings) as a Cross-Site Request Forgery flaw that can be triggered without auth...
WordPress Affiliates Manager Plugin <= 2.9.20 is vulnerable to Cross Site Request Forgery (CSRF)
Software Affiliates Manager Type Plugin Vulnerable versions = 2.9.20 Fixed in 2.9.21 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-28986 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID fc4c4d12d1a1 Credits minhtuanact...