CVE-2019-15769

CVE-2019-15769

EPSS 0.8%

The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via add_option and update_option.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wordpress.org/plugins/handl-utm-grabber/#developers https://wpvulndb.com/vulnerabilities/9848 https://www.pluginvulnerabilities.com/2019/08/26/our-proactive-monitoring-caught-an-authenticated-option-update-vulnerability-in-handl-utm-grabber/