Ads For WP <= 1.8 - Cross-Site Request Forgery (CSRF)



Description
CSRF allowing attacker to disconnect the linked Google Analytics from the plugin's settings

Affects Plugin

fixed in version 1.9

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2116839%40ads-for-wp&old=2112175%40ads-for-wp

Classification

Type CSRF
OWASP Top 10 A8: Cross-Site Request Forgery (CSRF)
CWE CWE-352

Miscellaneous

Views 1643
Verified No
WPVDB ID 9395

Timeline

Publicly Published 2019-06-26 (28 days ago)
Added 2019-06-26 (27 days ago)
Last Updated 2019-07-03 (20 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin