Lucene search
Daniel RufWPVDB-ID:178D0C49-3A93-4948-8734-F3D7518361B3HistoryMay 30, 2022 - 12:00 a.m.
WP-Email < 2.69.0 - Log Deletion via CSRF
2022-05-3000:00:00
Daniel Ruf
wpscan.com
8
0.001 Low
EPSS
Percentile
26.3%
The plugin does not protect its log deletion functionality with nonce checks, allowing attacker to make a logged in admin delete logs via a CSRF attack
PoC
Related
nvd
nvd
CVE-2022-1630
2022-06-20 11:15:09
wpexploit
wpexploit
WP-Email < 2.69.0 - Log Deletion via CSRF
2022-05-30 00:00:00
cvelist
cvelist
CVE-2022-1630 WP-Email < 2.69.0 - Log Deletion via CSRF
2022-06-20 10:25:56
cve
cve
CVE-2022-1630
2022-06-20 11:15:09
prion
prion
Cross site request forgery (csrf)
2022-06-20 11:15:00
cnvd
cnvd
WordPress WP-EMail plugin cross-site request forgery vulnerability
2022-06-22 00:00:00