cve/CVE-2022-0134.md at 0a6a8ff98932ea5803a682e12b920b88c786f419

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 18:27:17 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

The AnyComment WordPress plugin before 0.2.18 does not have CSRF checks in the Import and Revert HyperComments features, allowing attackers to make logged in admin perform such actions via a CSRF attack

POC

Reference

https://wpscan.com/vulnerability/fa09ea9b-d5a0-4773-a692-9ff0200bcd85

Github

https://github.com/ARPSyndicate/cvemon

769 B Raw Blame History

CVE-2022-0134

Description

POC

Reference

Github

769 B

Raw Blame History