CVE-2019-5984

CVE-2019-5984

EPSS 1.0%

Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Productos afectados

WaspThemes · Custom CSS Pro

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://jvn.jp/en/jp/JVN29933378/index.html https://wordpress.org/plugins/custom-css-pro/https://wpvulndb.com/vulnerabilities/9439