The Site Notes WordPress plugin through 2.0.0 does not have CSRF checks in some of its functionalities, which could allow attackers to make logged in users perform unwanted actions, such as deleting administration notes, via CSRF attacks
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2024-01-29T14:44:17.056Z
Updated: 2024-08-07T18:42:06.090Z
Reserved: 2023-12-08T18:54:30.372Z
Link: CVE-2023-6633
Vulnrichment
Updated: 2024-08-02T08:35:14.838Z
NVD
Status : Modified
Published: 2024-01-29T15:15:09.687
Modified: 2024-11-21T08:44:15.430
Link: CVE-2023-6633
Redhat
No data.