TeraWallet – For WooCommerce < 1.4.0 - Settings Update via CSRF

2022-10-3000:00:00

wpscan.com

terawallet

woocommerce

csrf

vulnerability

security

settings

attack

EPSS

0.001

Percentile

33.0%

JSON

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

EPSS

0.001

Percentile

33.0%

JSON

Related for WPVDB-ID:D5BA51E9-4410-4F9B-B95F-8732CFA7083F