CVE-2022-3336

Description

The Event Monster WordPress plugin before 1.2.0 does not have CSRF check when deleting visitors, which could allow attackers to make logged in admin delete arbitrary visitors via a CSRF attack

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics