NotCVE - vendor:"Daext" product:"League Table" version:" <= 1.13"

1 results (0.007 seconds)

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2023-48334 – WordPress League Table Plugin <= 1.13 is vulnerable to Cross Site Request Forgery (CSRF)

https://notcve.org/view.php?id=CVE-2023-48334

23 Nov 2023 — Cross-Site Request Forgery (CSRF) vulnerability in DAEXT League Table allows Cross Site Request Forgery.This issue affects League Table: from n/a through 1.13. Vulnerabilidad de Cross-Site Request Forgery (CSRF) en DAEXT League Table permite Cross Site Request Forgery. Este problema afecta a League Table: desde n/a hasta 1.13. The League Table plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.13. This is due to missing or incorrect nonce validation in the v... • https://patchstack.com/database/vulnerability/league-table-lite/wordpress-league-table-plugin-1-13-cross-site-request-forgery-csrf-vulnerability?_s_id=cve • CWE-352: Cross-Site Request Forgery (CSRF) •