7 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Description The plugin does not have CSRF check in its apbct_settings__update_account_email function, which could allow attackers to make logged in admins update email address via a CSRF attack
www.wordfence.com/threat-intel/vulnerabilities/id/19dd6670-2813-4944-abcd-c26fb9b82092