Lucene search
WpvulndbWPVDB-ID:878550B8-9758-4E55-8912-1DFE64DBD0F2HistoryMay 16, 2023 - 12:00 a.m.
Contact Form by Supsystic < 1.7.25 - CSRF
2023-05-1600:00:00
wpscan.com
3
contact form
supsystic
csrf
ajax
attack
security
vulnerability
0.001 Low
EPSS
Percentile
47.5%
The plugin does not have CSRF checks in their AJAX actions, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
| CPE | Name | Operator | Version |
|---|---|---|---|
| contact-form-by-supsystic | lt | 1.7.25 |
Related
cve
cve
CVE-2023-2528
2023-05-17 00:15:09
nvd
nvd
CVE-2023-2528
2023-05-17 00:15:09
prion
prion
Cross site request forgery (csrf)
2023-05-17 00:15:00
cvelist
cvelist
CVE-2023-2528
2023-05-16 23:35:31
wordfence
wordfence