CVE-2022-0328 in Simple Membership Plugininformación

Resumen

por MITRE • 2022-02-28

The Simple Membership WordPress plugin before 4.0.9 does not have CSRF check when deleting members in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

2022-01-21

Divulgación

2022-02-28

Moderación

aceptado

Artículo

VDB-193952

CPE

listo

EPSS

0.00464

KEV

no

Actividades

muy bajo

Fuentes

Want to know what is going to be exploited?

We predict KEV entries!