4 matches found
CVE-2023-36693
Cross-Site Request Forgery CSRF vulnerability in Alain Gonzalez WP RSS Images plugin = 1.1 versions...
CVE-2023-36693
Cross-Site Request Forgery CSRF vulnerability in Alain Gonzalez WP RSS Images plugin = 1.1 versions...
CVE-2023-36693
CVE-2023-36693 describes a CSRF vulnerability in the WordPress plugin WP RSS Images, version <= 1.1. The root cause noted in Patchstack is insufficient nonce verification, enabling unauthenticated CSRF. Public references confirm the vulnerability affects unauthenticated users and can enable CS...
CVE-2023-36693 WordPress WP RSS Images Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in Alain Gonzalez WP RSS Images plugin = 1.1 versions...