CVE-2021-25098 (easy_pricing_tables)

The Pricing Tables WordPress Plugin WordPress plugin before 3.1.3 does not verify the CSRF nonce when removing posts, allowing attackers to make a logged in admin remove arbitrary posts from the blog via a CSRF attack, which will be put in the trash

Original Article

Leave a Reply

Your email address will not be published. Required fields are marked *