Lucene search
WpvulndbWPVDB-ID:C75B6298-0B75-4667-ABBD-3A4EDAF7239CHistoryApr 15, 2022 - 12:00 a.m.
Simple Ajax Chat < 20220216 - Log Clearing & Arbitrary Chat Message Deletion via CSRF
2022-04-1500:00:00
wpscan.com
7
ajax chat
csrf
log clearing
message deletion
security vulnerability
EPSS
0.001
Percentile
20.8%
The plugin does not have CSRF check in place when clearing chat logs and deleting a chat message, which could allow attackers to make a logged in admin perform such actions via a CSRF attack
Related
prion
prion
Cross site request forgery (csrf)
2022-04-15 17:15:00
nvd
nvd
CVE-2022-27850
2022-04-15 17:15:08
patchstack
patchstack
cvelist
cvelist
cve
cve
CVE-2022-27850
2022-04-15 17:15:08