Description
The has a CSRF vulnerability that allows the deletion of a post without using a nonce or prompting for confirmation.
References
https://wpscan.com/vulnerability/5019db80-0356-497d-b488-a26a5de78676
ExploitThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
4.7 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Modified
Published
2022-11-21T11:15:20.897
2 years agoLast modified
2023-11-07T03:51:45.990
1 year ago