CVE-2023-3011
CVE-2023-3011 affects the WordPress ARMember plugin (up to version 4.0.5). The vulnerability is a Cross-Site Request Forgery caused by missing or incorrect nonce validation in the arm_check_user_cap function, enabling unauthenticated attackers to trigger unauthorized actions if a site administrat...