Lucene search
WpvulndbWPVDB-ID:E3DDB077-FCB4-4C99-A1E4-E44085D9C02EHistoryOct 12, 2023 - 12:00 a.m.
Hide Admin Notices < 2.3.3 - Settings Update via CSRF
2023-10-1200:00:00
wpscan.com
3
csrf
settings update
admin
security vulnerability
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 2.3.3 |
Related
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-10-09 19:15:00
nvd
nvd
CVE-2023-41672
2023-10-09 19:15:10
cve
cve
CVE-2023-41672
2023-10-09 19:15:10
wordfence
wordfence
6.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Related for WPVDB-ID:E3DDB077-FCB4-4C99-A1E4-E44085D9C02E