CVE-2023-4150 in User Activity Tracking and Log Plugininformation

Résumé

par MITRE • 30/08/2023

The User Activity Tracking and Log WordPress plugin before 4.0.9 does not have proper CSRF checks when managing its license, which could allow attackers to make logged in admins update and deactivate the plugin's license via CSRF attacks

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

04/08/2023

Divulgation

30/08/2023

Modérer

accepté

Entrée

VDB-236463

CPE

prêt

EPSS

0.00218

KEV

non

Activités

très faible

Sources

Do you need the next level of professionalism?

Upgrade your account now!