Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-3336

Disclosure Date: November 21, 2022 (last updated November 08, 2023)
The Event Monster WordPress plugin before 1.2.0 does not have CSRF check when deleting visitors, which could allow attackers to make logged in admin delete arbitrary visitors via a CSRF attack
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0