CVE-2023-3320
CVE-2023-3320 – WP Sticky Social (WordPress) is a CSRF vulnerability in versions up to 1.0.1 caused by missing nonce validation in admin.php. This allows unauthenticated attackers to modify plugin settings and inject scripts via forged requests when a site admin performs an action (e.g., clicking...