Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-1793

Disclosure Date: June 13, 2022 (last updated February 23, 2025)
The Private Files WordPress plugin through 0.40 is missing CSRF check when disabling the protection, which could allow attackers to make a logged in admin perform such action via a CSRF attack and make the blog public
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0