CVE-2022-1779
Auto Delete Posts <= 1.3.0 - Arbitrary Settings Update via CSRF
The Auto Delete Posts WordPress plugin through 1.3.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and delete specific posts, categories and attachments at once.
Productos afectados
Unknown · Auto Delete Posts¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →