The CommentTweets WordPress plugin through 0.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
References
Link | Resource |
---|---|
https://magos-securitas.com/txt/2023-6845 | Broken Link |
https://wpscan.com/vulnerability/cbdaf158-f277-4be4-b022-68d18dae4c55 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2024-01-08T19:00:38.284Z
Updated: 2024-01-08T19:00:38.284Z
Reserved: 2023-12-15T14:26:23.314Z
Link: CVE-2023-6845
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-01-08T19:15:10.727
Modified: 2024-01-11T20:01:43.617
Link: CVE-2023-6845
JSON object: View
Redhat Information
No data.
CWE