CVE-2019-5984

CVE-2019-5984

EPSS 1.0%

Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Affected products

WaspThemes · Custom CSS Pro

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jvn.jp/en/jp/JVN29933378/index.html https://wordpress.org/plugins/custom-css-pro/https://wpvulndb.com/vulnerabilities/9439