Beta

Report

Ultra Seven <= 1.2.8 is vulnerable to Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

Unauthenticated
Published
2022-01-23

Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

CVE

https://www.cve.org/CVERecord?id=CVE-

CVSS

Score:8.1

Severity:High

Version: 1.2.8

The plugin vendor has not patched this vulnerability at the moment.