CVE-2022-0616
Amelia < 1.0.46 - Arbitrary Customer Deletion via CSRF
The Amelia WordPress plugin before 1.0.47 does not have CSRF check in place when deleting customers, which could allow attackers to make a logged in admin delete arbitrary customers via a CSRF attack
Productos afectados
Unknown · Amelia – Events & Appointments Booking Calendar¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →