CVE-2022-1603
Mail Subscribe List < 2.1.4 - Arbitrary Subscribed User Deletion via CSRF
The Mail Subscribe List WordPress plugin before 2.1.4 does not have CSRF check in place when deleting subscribed users, which could allow attackers to make a logged in admin perform such action and delete arbitrary users from the subscribed list
Affected products
Unknown · Mail Subscribe ListWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →