25 WordPress plugins vulnerable to CSRF attacks.
Twenty five plugins for WordPress were found to be vulnerable to cross-site request forgery (CSRF) attacks.
Tag: Vulnerability
Critical zero-day vulnerability fixed in WordPress File Manager (700,000+ installations).
Critical zero-day vulnerability fixed in WordPress File Manager (700,000+ installations). Update immediately.
WordPress Kali Forms plugin fixed multiple vulnerabilities.
The WordPress Kali Forms plugin (30,000+ active installations) fixed multiple vulnerabilities affecting version 2.1.2 and below.
Multiple vulnerabilities fixed in CMP – Coming Soon and Maintenance plugin.
The WordPress CMP – Coming Soon and Maintenance plugin (100k+ active installations) fixed multiple vulnerabilities.
High severity vulnerability fixed in Product Input Fields for WooCommerce.
The Product Input Fields for WooCommerce plugin (5,000+ active installations) fixed a high severity vulnerability that could allow an unauthenticated user to download any file from the blog, including the WordPress configuration file.