2 matches found
CVE-2024-0592
The Related Posts for WordPress plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.2.1. This is due to missing or incorrect nonce validation on the handlecreatelink function. This makes it possible for unauthenticated attackers to add related...
CVE-2024-0592
CVE-2024-0592 — Related Posts for WordPress (WordPress plugin) CSRF . Affected: the Related Posts for WordPress plugin for WordPress, up to version 2.2.1. Root cause: missing/incorrect nonce validation in handle_create_link(). Impact: unauthenticated attackers can forge requests to add related po...