CVE-2022-1694 Information

Description

The Useful Banner Manager WordPress plugin through 1.6.1 does not perform CSRF checks on POST requests to its admin page allowing an attacker to trick a logged in admin to add modify or delete banners from the plugin by submitting a form.

Reference

https://wpscan.com/vulnerability/169a6c81-6c76-4f29-8f60-b2551042b962