CVEs-PoC/2023/CVE-2023-0502.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-31 10:09:29 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

The WP News WordPress plugin through 1.1.9 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack

POC

Reference

https://wpscan.com/vulnerability/c959f4ce-b6ea-4aee-9a98-aa98d2a62138

Github

https://github.com/20142995/nuclei-templates

767 B Raw Blame History

CVE-2023-0502

Description

POC

Reference

Github

767 B

Raw Blame History