mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
913 B
913 B
CVE-2021-24725
&color=brighgreen)
Description
The Comment Link Remove and Other Comment Tools WordPress plugin before 2.1.6 does not have CSRF check in its 'Delete comments easily', which could allow attackers to make logged in admin delete arbitrary comments
POC
Reference
- https://wpscan.com/vulnerability/01483284-57f5-4ae9-b5f1-ae26b623571f
- https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=29225
Github
No PoCs found on GitHub currently.