CVE-2023-7174 in CommentSafe Plugininfo

Zusammenfassung

von MITRE • 15.05.2025

The aBitGone CommentSafe WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

29.12.2023

Veröffentlichung

15.05.2025

Moderieren

akzeptiert

Eintrag

VDB-251988

CPE

bereit

EPSS

0.00163

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!