CVE-2022-3151 Information

Oct 18, 2022 cve

Description

The WP Custom Cursors WordPress plugin before 3.0.1 does not have CSRF check in place when deleting cursors which could allow attackers to made a logged in admin delete arbitrary cursors via a CSRF attack.

Reference

https://wpscan.com/vulnerability/27816c70-58ad-4ffb-adcc-69eb1b210744

Share on: