← volver
CVE-2022-1694

Useful Banner Manager <= 1.6.1 - Modify banners via CSRF

EPSS 0.5%CWE-352
The Useful Banner Manager WordPress plugin through 1.6.1 does not perform CSRF checks on POST requests to its admin page, allowing an attacker to trick a logged in admin to add, modify or delete banners from the plugin by submitting a form.
Productos afectados
Unknown · Useful Banner Manager

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://wpscan.com/vulnerability/169a6c81-6c76-4f29-8f60-b2551042b962