CVE-2015-9418 – WatuPRO < 4.9.0.8 - Cross-Site Request Forgery

https://notcve.org/view.php?id=CVE-2015-9418

The Watu Pro plugin before 4.9.0.8 for WordPress has CSRF that allows an attacker to delete quizzes. El plugin Watu Pro versiones anteriores a 4.9.0.8 para WordPress, presenta una vulnerabilidad de tipo CSRF que permite a un atacante eliminar los cuestionarios. • https://advisories.dxw.com/advisories/csrf-in-watu-pro-allows-unauthenticated-attackers-to-delete-quizzes https://calendarscripts.info/watupro https://wordpress.org/plugins/watupro/#developers • CWE-352: Cross-Site Request Forgery (CSRF) •