Wp Prayer@* Security Vulnerabilities and Issues — Wp Prayer@* CVE List

Lucene search

GoprayerWp Prayer*

4 matches found

cve•added 2024/05/15 6:15 a.m.•56 views

CVE-2024-3405

The WP Prayer WordPress plugin through 2.0.9 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

7.6CVSS6.6AI score0.00132EPSS

cve•added 2024/05/15 6:15 a.m.•55 views

CVE-2024-3406

The WP Prayer WordPress plugin through 2.0.9 does not have CSRF check in place when updating its email settings, which could allow attackers to make a logged in admin change them via a CSRF attack

8.8CVSS6.6AI score0.00223EPSS

cve•added 2024/05/15 6:15 a.m.•49 views

CVE-2024-3407

The WP Prayer WordPress plugin through 2.0.9 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

5.3CVSS6.7AI score0.00048EPSS

cve•added 2024/06/14 6:15 a.m.•42 views

CVE-2024-4751

The WP Prayer II WordPress plugin through 2.4.7 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

4.3CVSS4.8AI score0.00264EPSS