CVE-2023-37991
CVE-2023-37991 : A CSRF vulnerability exists in the WordPress plugin WP Emoji One (Monchito.Net) for versions ≤ 0.6.0. The issue is a missing CSRF check during settings updates, enabling unauthenticated or crafted requests to trigger admin actions when a logged-in user is targeted. Documented as ...