PT-2021-16380 · WordPress · Likebtn
Name of the Vulnerable Software and Affected Versions: LikeBtn WordPress plugin versions prior to 2.6.38 Description: The issue concerns a lack of authorization and CSRF checks in the likebtn export votes AJAX action. This could allow any authenticated user, such as a subscriber, to obtain a list...