Lucene search
WpvulndbWPVDB-ID:6E82A9EF-25B2-4A4D-AA51-217DAEE7B8FAHistoryOct 11, 2023 - 12:00 a.m.
Add Shortcodes Actions And Filters < 2.10 - Settings Update via CSRF
2023-10-1100:00:00
wpscan.com
1
csrf attack
security
admin privileges
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 2.10 |
Related
prion
prion
Cross site request forgery (csrf)
2023-10-10 15:15:00
cvelist
cvelist
cve
cve
CVE-2023-44475
2023-10-10 15:15:10
nvd
nvd
CVE-2023-44475
2023-10-10 15:15:10
wordfence
wordfence
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Related for WPVDB-ID:6E82A9EF-25B2-4A4D-AA51-217DAEE7B8FA