CVE-2023-7195 Information

Description

The WP-Reply Notify WordPress plugin through 1.1 does not have a CSRF check in place when updating its settings which could allow attackers to make a logged-in admin change them via a CSRF attack.

Reference

https://wpscan.com/vulnerability/72279ca0-6365-4c83-adca-4d8e5808a8c5/