Lucene search
WpvulndbWPVDB-ID:BC91072B-BED3-43E3-960C-A76E0AD184E0HistoryJan 20, 2023 - 12:00 a.m.
Contact Us page - Contact people LITE < 3.7.1 - Contact Update/Deletion/Creation via CSRF
2023-01-2000:00:00
wpscan.com
9
contact us
csrf
vulnerability
update
deletion
creation
software
EPSS
0.001
Percentile
22.3%
The plugin does not have CSRF checks when creating, updating and deleting contacts, which could allow attackers to make logged in users perform such actions via CSRF attacks
Related
prion
prion
Cross site request forgery (csrf)
2023-03-01 13:15:00
nvd
nvd
CVE-2023-23973
2023-03-01 13:15:10
cvelist
cvelist
cve
cve
CVE-2023-23973
2023-03-01 13:15:10