4 matches found
WordPress Post From Frontend plugin <= 1.0.0 - Post Deletion via CSRF vulnerability
Post Deletion via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Post From Frontend versions = 1.0.0...
CVE-2024-9689
The Post From Frontend WordPress plugin through 1.0.0 does not have CSRF check when deleting posts, which could allow attackers to make logged in admin perform such action via a CSRF attack...
CVE-2024-9689 Post From Frontend <= 1.0.0 - Post Deletion via CSRF
The Post From Frontend WordPress plugin through 1.0.0 does not have CSRF check when deleting posts, which could allow attackers to make logged in admin perform such action via a CSRF attack...
WordPress Post From Frontend Plugin <= 1.0.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Post From Frontend Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-9689 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 3efb0a9a0186 Credits Bob Matyas Required...