Lucene search
WpvulndbWPVDB-ID:36785E4D-AE2F-47BF-B20A-1160DF6EB17AHistoryNov 23, 2023 - 12:00 a.m.
Donations Made Easy – Smart Donations <= 4.0.12 - Cross-Site Request Forgery
2023-11-2300:00:00
wpscan.com
2
wordpress
cross-site request forgery
donations made easy
Description The Donations Made Easy – Smart Donations plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.0.12. This is due to missing or incorrect nonce validation on an unknown function. This makes it possible for unauthenticated attackers to perform an unauthorized action via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Related
cve
cve
CVE-2023-47551
2023-11-18 22:15:07
prion
prion
Cross site request forgery (csrf)
2023-11-18 22:15:00
nvd
nvd
CVE-2023-47551
2023-11-18 22:15:07
cvelist
cvelist
wordfence
wordfence
6.6 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
24.1%
Related for WPVDB-ID:36785E4D-AE2F-47BF-B20A-1160DF6EB17A