exploitDog

GHSA-m9fr-8jx6-pm3q

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Multi-Scheduler plugin 1.0.0 for WordPress has a Cross-Site Request Forgery (CSRF) vulnerability in the forms it presents, allowing the possibility of deleting records (users) when an ID is known.

The Multi-Scheduler plugin 1.0.0 for WordPress has a Cross-Site Request Forgery (CSRF) vulnerability in the forms it presents, allowing the possibility of deleting records (users) when an ID is known.

Ссылки

EPSS

Процентиль: 63%

0.0044

Низкий

CVE ID

Связанные уязвимости

CVE-2020-13426

CVSS3: 6.5

nvd

больше 5 лет назад

The Multi-Scheduler plugin 1.0.0 for WordPress has a Cross-Site Request Forgery (CSRF) vulnerability in the forms it presents, allowing the possibility of deleting records (users) when an ID is known.

EPSS

Процентиль: 63%

0.0044

Низкий

CVE ID