AI Score
Confidence
High
EPSS
Percentile
24.1%
Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
patchstack.com/database/vulnerability/product-category-tree/wordpress-product-category-tree-plugin-2-5-cross-site-request-forgery-csrf-vulnerability
www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/product-category-tree/product-category-tree-25-cross-site-request-forgery