Personalized WooCommerce Cart Page <= 2.4 - Cross-Site Request Forgery (CSRF)
Affects Plugin
fixed in version 2.5
|
References
CVE | 2019-5979 |
URL | https://jvn.jp/en/jp/JVN88804335/index.html |
URL | https://plugins.trac.wordpress.org/changeset/2099595/personalize-woocommerce-cart-page |
Classification
Type | CSRF |
CWE | CWE-352 |
Miscellaneous
Original Researcher | Akira Yamasaki of Cryptography Laboratory |
Submitter | Ryan Dewhurst |
Submitter Website | https://wpscan.io |
Submitter Twitter | ethicalhack3r |
Views | 4030 |
Verified | No |
WPVDB ID | 9437 |
Timeline
Publicly Published | 2019-06-19 (6 months ago) |
Added | 2019-07-09 (5 months ago) |
Last Updated | 2019-11-27 (11 days ago) |
Our Other Services
Online WordPress Vulnerability Scanner | WPScan WordPress Security Plugin |