Lucene search
Harald EilertsenWPVDB-ID:3351BC30-E5FF-471F-8D1C-B1BCDF419937HistorySep 13, 2021 - 12:00 a.m.
Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF
2021-09-1300:00:00
Harald Eilertsen
wpscan.com
8
csrf
domain deletion
software license manager
EPSS
0.001
Percentile
51.2%
The del_reistered_domains AJAX action of the plugin does not have any CSRF checks, and is vulnerable to a CSRF attack
PoC
https://example.com/wp-admin/admin-ajax.php?action=del_reistered_domain&id;=1
Related
prion
prion
Cross site request forgery (csrf)
2021-10-11 11:15:00
cve
cve
CVE-2021-24711
2021-10-11 11:15:09
patchstack
patchstack
nvd
nvd
CVE-2021-24711
2021-10-11 11:15:09
cvelist
cvelist
wpexploit
wpexploit
Software License Manager < 4.5.1 - Arbitrary Domain Deletion via CSRF
2021-09-13 00:00:00