Lucene search
WpvulndbWPVDB-ID:B96650C8-B85C-4BD6-BAC4-9A851943737AHistoryOct 13, 2023 - 12:00 a.m.
Publish Confirm Message < 2.0 - Settings Update via CSRF
2023-10-1300:00:00
wpscan.com
1
plugin
csrf check
settings update
admin
attack
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 2.0 |
Related
cvelist
cvelist
cve
cve
CVE-2023-32124
2023-10-12 15:15:46
nvd
nvd
CVE-2023-32124
2023-10-12 15:15:46
prion
prion
Cross site request forgery (csrf)
2023-10-12 15:15:00
wordfence
wordfence
8.6 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Related for WPVDB-ID:B96650C8-B85C-4BD6-BAC4-9A851943737A