mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
816 B
816 B
CVE-2021-24805
&color=brighgreen)
Description
The DW Question & Answer Pro WordPress plugin through 1.3.4 does not properly check for CSRF in some of its functions, allowing attackers to make logged in users perform unwanted actions, such as update a comment or a question status.
POC
Reference
Github
No PoCs found on GitHub currently.