CVE-2022-1847 Information

Description

The Rotating Posts WordPress plugin through 1.11 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack

Reference

https://wpscan.com/vulnerability/d34ed713-4cca-4cef-b431-f132f1b10aa6