Lucene search
WpvulndbWPVDB-ID:4DF287B3-C816-472D-BA7F-0E05418C9BD2HistoryDec 23, 2023 - 12:00 a.m.
Disable User Login < 1.3.9 - User Login Toggle via CSRF
2023-12-2300:00:00
wpscan.com
31
plugin
csrf
vulnerability
unauthorized
user login
Description The plugin does not have CSRF check in its bulk action, which could allow attackers to make logged in admins enable and disable login for arbitrary users via a CSRF attack
Related
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-12-18 16:15:00
nvd
nvd
CVE-2023-47806
2023-12-18 16:15:10
cve
cve
CVE-2023-47806
2023-12-18 16:15:10
AI Score
8.6
Confidence
High
EPSS
0.001
Percentile
24.1%
Related for WPVDB-ID:4DF287B3-C816-472D-BA7F-0E05418C9BD2