Lucene search
WordfenceWPVDB-ID:7CFEFCC9-ADBF-4AFC-B25F-92F417650359HistoryJul 28, 2021 - 12:00 a.m.
SEO Backlinks <= 4.0.1 - CSRF to Stored XSS
2021-07-2800:00:00
Wordfence
wpscan.com
7
0.001 Low
EPSS
Percentile
47.3%
The SEO Backlinks WordPress plugin is vulnerable to Cross-Site Request Forgery via the loc_config function found in the ~/seo-backlinks.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 4.0.1.
PoC
" /> " />
CSRF PoC
| CPE | Name | Operator | Version |
|---|---|---|---|
| seo-backlinks | eq | * |
Related
nvd
nvd
CVE-2021-34632
2021-08-02 21:15:08
wpexploit
wpexploit
SEO Backlinks <= 4.0.1 - CSRF to Stored XSS
2021-07-28 00:00:00
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2021-08-02 21:15:00
cvelist
cvelist
cve
cve
CVE-2021-34632
2021-08-02 21:15:08