CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-15841 – Facebook for WooCommerce <= 1.9.12 - Cross-Site Request Forgery allowing Option Update
https://notcve.org/view.php?id=CVE-2019-15841
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, or ajax_fb_toggle_visibility. El plugin de facebook-for-woocommerce anterior a la versión 1.9.15 para WordPress tiene CSRF a través de ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, o ajax_fb_toggle_visibility. • https://wordpress.org/plugins/facebook-for-woocommerce/#developers • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-15840 – Facebook for WooCommerce <= 1.9.12 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2019-15840
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF. El plugin facebook-for-woocommerce anterior a la versión 1.9.14 para WordPress tiene CSRF. • https://wordpress.org/plugins/facebook-for-woocommerce/#developers • CWE-352: Cross-Site Request Forgery (CSRF) •