mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-01 11:01:35 +02:00
0xMarcio
918 B
918 B
CVE-2021-24166
&color=brighgreen)
Description
The wp_ajax_nf_oauth_disconnect from the Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress WordPress plugin before 3.4.34 had no nonce protection making it possible for attackers to craft a request to disconnect a site's OAuth connection.
POC
Reference
Github
No PoCs found on GitHub currently.