QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF. Lack of CSRF check in plugin activation may lead to admins unwittingly activating harmful plugins via CSRF attack
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
Prion | Cross site request forgery (csrf) | 27 Mar 202316:15 | – | prion |
wpexploit | QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF | 28 Feb 202300:00 | – | wpexploit |
CVE | CVE-2023-0499 | 27 Mar 202316:15 | – | cve |
Patchstack | WordPress QuickSwish Plugin < 1.1.0 is vulnerable to Cross Site Request Forgery (CSRF) | 28 Mar 202300:00 | – | patchstack |
NVD | CVE-2023-0499 | 27 Mar 202316:15 | – | nvd |
Cvelist | CVE-2023-0499 QuickSwish < 1.1.0 - Arbitrary Plugin Activation via CSRF | 27 Mar 202315:37 | – | cvelist |
Wordfence Blog | Wordfence Intelligence Weekly WordPress Vulnerability Report (Feb 27, 2023 to Mar 5, 2023) | 9 Mar 202314:32 | – | wordfence |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo