Lucene search

K
wpvulndbWpvulndbWPVDB-ID:018E2365-A4E9-46D2-8696-5BCD6EAE7707
HistoryOct 10, 2023 - 12:00 a.m.

SendPress Newsletters <= 1.23.11.6 - CSRF

2023-10-1000:00:00
wpscan.com
3
plugin
csrf checks
attackers
logged in users
unwanted actions
csrf attacks

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.3%

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.3%

Related for WPVDB-ID:018E2365-A4E9-46D2-8696-5BCD6EAE7707