Lucene search
WpvulndbWPVDB-ID:E4AC9ACA-4EFE-463A-8680-35BC469DF8E3HistoryOct 11, 2023 - 12:00 a.m.
Kv TinyMCE Editor Add Fonts <= 1.1 - Font List Update via CSRF
2023-10-1100:00:00
wpscan.com
2
tinymce
csrf
vulnerability
font list update
admins
Description The plugin does not have CSRF check when updating its font list, which could allow attackers to make logged in admins perform such action via a CSRF attack
Related
vulnrichment
vulnrichment
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-10-10 14:15:00
nvd
nvd
CVE-2023-44470
2023-10-10 14:15:10
cve
cve
CVE-2023-44470
2023-10-10 14:15:10
wordfence
wordfence
AI Score
6.4
Confidence
High
EPSS
0.001
Percentile
24.1%
Related for WPVDB-ID:E4AC9ACA-4EFE-463A-8680-35BC469DF8E3