Lucene search

K

Product Slider for WooCommerce < 2.5.7 - Subscriber+ Arbitrary Options Deletion

🗓️ 26 Jul 2022 00:00:00Reported by Krzysztof ZającType 
wpvulndb
 wpvulndb
🔗 wpscan.com👁 16 Views

Product Slider for WooCommerce Subscriber+ Arbitrary Options Deletion. Flawed CSRF checks and lack of authorization in AJAX actions allow authenticated users to delete blog options. PoC exploit included

Show more
Related
Detection
Vulners
Node

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
26 Jul 2022 00:00Current
3.7Low risk
Vulners AI Score3.7
EPSS0.001
16
.json
Report