IRivYou <= 2.2.1 - Arbitrary Settings Update via CSRF

2023-10-1700:00:00

wpscan.com

csrf checks

plugin

attackers

unwanted actions

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

24.1%

JSON

Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks