Cross-Site Request Forgery (CSRF) in Access Demo Importer <= 1.0.7 on WordPress allows an attacker to reset all data (posts / pages / media).
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/access-demo-importer/wordpress-access-demo-importer-plugin-1-0-7-cross-site-request-forgery-csrf-vulnerability-leading-to-data-reset-posts-pages-media | Third Party Advisory |
https://wordpress.org/plugins/access-demo-importer/#developers | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Patchstack
Published: 2022-01-24T00:00:00
Updated: 2022-04-18T16:20:30
Reserved: 2022-01-26T00:00:00
Link: CVE-2022-23976
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-04-18T17:15:16.560
Modified: 2022-04-27T01:10:32.580
Link: CVE-2022-23976
JSON object: View
Redhat Information
No data.
CWE