PT-2023-16188 · WordPress · Wp Shamsi
Name of the Vulnerable Software and Affected Versions: WP Shamsi WordPress plugin versions 4.3.3 and earlier Description: The issue concerns CSRF and broken access control vulnerabilities. These vulnerabilities allow a user with a role as low as a subscriber to delete attachments. Recommendations...