Jonathonkemp - Wordpress Users CVE

Filtered by vendor Jonathonkemp Subscribe

Filtered by product Wordpress Users

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-6390	1 Jonathonkemp	1 Wordpress Users	2024-02-03	N/A	8.8 HIGH
The WordPress Users WordPress plugin through 1.4 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

Vulnerabilities (CVE)