mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 17:50:34 +00:00
836 B
836 B
CVE-2022-1627
&color=brighgreen)
Description
The My Private Site WordPress plugin before 3.0.8 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
POC
Reference
- https://wpscan.com/vulnerability/70ce3654-8fd9-4c33-b594-fac13ec26137
- https://wpscan.com/vulnerability/70ce3654-8fd9-4c33-b594-fac13ec26137
Github
No PoCs found on GitHub currently.