CVE-2023-41697 – WordPress Easy WP Cleaner Plugin <= 1.9 is vulnerable to Cross Site Request Forgery (CSRF)

https://notcve.org/view.php?id=CVE-2023-41697

05 Sep 2023 — Cross-Site Request Forgery (CSRF) vulnerability in Nikunj Soni Easy WP Cleaner plugin <= 1.9 versions. Vulnerabilidad de Cross-Site Request Forgery (CSRF) en el complemento Nikunj Soni Easy WP Cleaner en versiones <= 1.9. The Easy WP Cleaner plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.9. This is due to missing nonce validation on the easy_wp_cleaner_optimize() function. This makes it possible for unauthenticated attackers to delete data from a Word... • https://patchstack.com/database/vulnerability/easy-wp-cleaner/wordpress-easy-wp-cleaner-plugin-1-9-cross-site-request-forgery-csrf-vulnerability?_s_id=cve • CWE-352: Cross-Site Request Forgery (CSRF) •