3 matches found
CVE-2023-50902
Cross-Site Request Forgery CSRF vulnerability in WPExpertsio New User Approve.This issue affects New User Approve: from n/a through 2.5.1...
CVE-2023-50902
CVE-2023-50902 is a CSRF vulnerability in the WordPress plugin New User Approve (WP-Plugins). The CVE affects New User Approve up to version 2.5.1 and is described as Cross-Site Request Forgery via the admin_notices pathway. The issue is documented with an in-scope remediation: upgrade to a patch...
WordPress New User Approve Plugin <= 2.5.1 is vulnerable to Cross Site Request Forgery (CSRF)
Software New User Approve Type Plugin Vulnerable versions = 2.5.1 Fixed in 2.5.2 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-50902 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 064c7d29ebf0 Credits RE-ALTER Required...