Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Enqueue Anything ProjectEnqueue Anything

1 matches found

CVE
CVEadded 2022/06/13 12:41 p.m.69 views

CVE-2021-25116

CVE-2021-25116 affects the WordPress plugin Enqueue Anything (versions ≤ 1.0.1). The vulnerability stems from missing authorization and CSRF checks in the remove_asset AJAX action and failure to verify that the target is actually an asset, allowing low-privilege users (e.g., subscribers) to delet...

6.5CVSS6.4AI score0.00097EPSS
Web